Reserve Bank Information Technology Private Limited (ReBIT) - … · 2021. 1. 11. · ReBIT...

of 65

Setup and Implementation Of Multifactor Authentication (MFA) Solution

-----------------------------------------------------------

REQUEST FOR PROPOSAL (RFP)

(11 January 2021)

RFP: ReBIT/2020 / CPO / 023

Reserve Bank Information Technology Pvt. Ltd.

502, Building No 1, Mindspace Juinagar, Nerul, Navi Mumbai – 400706

This document is the property of Reserve Bank Information Technology Private Limited (ReBIT).

It may not be copied, distributed or recorded on any medium, electronic or otherwise, without

the ReBIT’s written permission thereof, except for the purpose of responding to ReBIT for the

said purpose. The use of the contents of this document, even by the authorized personnel /

agencies for any purpose other than the purpose specified herein, is strictly prohibited and

shall amount to copyright violation and thus, shall be punishable under the Indian Law.

Setup and Implementation of MFA

ReBIT/2020 / CPO / 023

Confidential of 65

Disclaimers and Disclosures

ReBIT has prepared this document to give background information to interested parties for participating

in this RFP. While ReBIT has taken due care in the preparation of this RFP document and believes it to be

accurate, neither ReBIT nor any of its authorities or agencies nor any of their respective officers,

employees, agents or advisors give any warranty or make any representations, express or implied as to

the completeness or accuracy of the information contained in this document or any information which

may be provided in association with it.The information is not intended to be exhaustive.

Interested parties are required to make their own inquiries and respondents will be required to confirm

in writing that they have done so, and they do not rely only on the information provided by ReBIT in

submitting a bid. The information is provided on the basis that it is non–binding on ReBIT or any of its

authorities or agencies or any of their respective officers, employees, agents or advisors. ReBIT reserves

the right to modify the requirements as well as add or delete, as the case may be, to meet ReBIT’s

requirements at any point of time. ReBIT reserves the right not to proceed with the RFP, to alter the

Schedule of Events reflected in this document or to change the process or procedure to be applied. It

also reserves the right to decline to discuss the matter further with any party expressing interest. No

reimbursement of cost of any type will be paid to persons or entities expressing interest. ReBIT reserves

the right to accept or reject, in full or in part, any or all the offers without assigning any reason

whatsoever. ReBIT does not bind itself to accept the lowest or any tender and reserves the right to reject

all or any bid or cancel the tender without assigning any reason whatsoever. ReBIT also has the right to

re-issue the tender without the Bidder having the right to object to such reissue.

The proposal in response to RFP should be signed and submitted by a person duly authorized to bind

the Bidder to the details submitted in the proposal. The signatory should give a declaration and through

authenticated documentary evidence establish that he/she is empowered by the competent authority to

sign the necessary documents and bind the bid. All pages of the bid documents are to be signed by the

authorized signatory.

This RFP is neither an offer from ReBIT nor does it constitute any binding obligation or commitment on

ReBIT. This RFP is only a document that invites interested parties to, on a non-exclusive basis, express

an interest with no obligation, commitment or liability of any manner devolving on ReBIT, either on

account of the issue of this RFP to the interested parties, or upon receipt of any response from the

interested parties thereto, or any meetings or presentations made. All expenses incurred by the

interested parties as a result of responding to, or further to this RFP, are to their own account and ReBIT

will not be liable in this respect whatsoever. No reimbursement of cost of any type will be paid to persons

or entities proposing a solution.

Please note that any part or the whole of information, directly or indirectly learnt, for any other purpose,

other than for conducting work under the ambit of the RFP issued by ReBIT is not authorized. Any

clarification sought can be mailed to email address specified in the RFP included in this document. All

clarifications sought should be concluded prior to the last date of submission of queries specified in the

RFP.


ReBIT/2020 / CPO / 023

Confidential of 65

Schedule of Events

The following is an indicative timeframe for the overall process. ReBIT reserves right to vary

from this timeframe at its absolute and sole discretion and without providing any

notice/termination or reasons thereof. Changes to the timeframe will be communicated.

Tender inviting authority Reserve Bank Information Technology Pvt. Ltd. (ReBIT)

RFP BID reference

number RFP: ReBIT/2020 / CPO / 023

RFP requirement Setup and Implementation of Multi Factor Authentication (MFA) Solution

Method of selection Based on Technical qualification and lowest Commercial bid as mentioned

in the RFP

Availability of RFP

documents

11 January-2021

RFP document shall be available on ReBIT’s website

(URL: https://rebit.org.in/procurement) and CPPP e-procurement portal

(URL: https://eprocure.gov.in/eprocure/app)

Bidder shall refer Annexure – P: Instructions to Bidder for Online Bid

Submission

Last date and time for

submission of pre-bid

queries

15 January-2021 upto 16:00 Hrs

Queries should be submitted in the format prescribed in Annexure - N of

this RFP and sent to [email protected]

Pre-bid meeting

19 January-2021 at 15:00 Hrs

Through Video conferencing.

The video conferencing link will be shared with those bidders who are

interested to participate in the meeting.

The bidders who are interested to participate in the pre-bid meeting are

requested to send an e-mail request for the same with their details at

[email protected] along with their queries, if any, as per the last

date and time specified above for submission of the pre-bid queries.

Date of communication

of responses to pre-bid

queries and

corrigendum, if any

25 January-2021 through ReBIT’s website

(URL: https://rebit.org.in/procurement) and CPPP e-procurement portal

(URL: https://eprocure.gov.in/eprocure/app)

Last date and time for

bid submission (on or

before)

30 January-2021 upto 15:00 Hrs through CPPP e-procurement portal (URL:

https://eprocure.gov.in/eprocure/app)

Technical Bid opening 01 February-2021 at 16:00 Hrs in CPPP e-procurement Portal :

(https://eprocure.gov.in/eprocure/app)

Product Demonstration

and presentation by

Bidder

Will be communicated later

https://rebit.org.in/procurement


mailto:[email protected]





ReBIT/2020 / CPO / 023

Confidential of 65

Price Bid opening Will be communicated later

Proposal validity Proposals must remain valid up to 180 (One hundred and eighty) days

from the last date of submission.

Name and address for

communication

Head CPO Procurement COE, Reserve Bank Information Technology

Private Limited, 502, Building No 1, Mindspace Juinagar, Nerul, Navi

Mumbai – 400706

Email: [email protected]

mailto:[email protected]


ReBIT/2020 / CPO / 023

Confidential of 65

Table of Contents

1. About ReBIT ...................................................................................................................... 7

2. Invitation of Bids ............................................................................................................... 7

3. Definition of terms ............................................................................................................ 7

4. Minimum Eligibility Criteria ............................................................................................... 8

5. Scope of Work and project milestone ................................................................................ 8

5.1 General terms of the scope of work ................................................................................ 8

5.2 MFA requirements .......................................................................................................... 8

5.3 Hardware requirements .................................................................................................. 8

5.4 Implementation .............................................................................................................. 9

5.5 Need based on-site support .......................................................................................... 12

5.6 Project Milestones ........................................................................................................ 13

5.7 Post Implementation ..................................................................................................... 14

6. Locations to be covered .................................................................................................. 15

7. Cost of Bidding ............................................................................................................... 15

8. Bidding Process: .............................................................................................................. 15

8.1 Language of Bid ............................................................................................................ 15

8.2 Authorization to Bid ..................................................................................................... 15

8.3 Bid Security/ EMD ......................................................................................................... 15

8.4 Bid and Price Validity .................................................................................................... 16

8.5 Pre-Bid Meeting ............................................................................................................ 16

8.6 Clarifications and Amendment in RFP Documents ........................................................ 16

8.7 Two-part Bid ................................................................................................................. 17

8.8 Submission of bids ....................................................................................................... 18

8.9 Modification and Withdrawals of Bid ............................................................................. 18

8.10 Bid opening and Evaluation Process .............................................................................. 18

8.11 Award of contract ......................................................................................................... 20

9. Performance Bank Guarantee .......................................................................................... 21

10. Rejection of Bid ............................................................................................................... 22

11. Payment Terms and Milestone ........................................................................................ 22

12. Taxes and Duties ............................................................................................................ 22

13. OEM Authorization .......................................................................................................... 23

14. Patent Rights ................................................................................................................... 23

15. Termination .................................................................................................................... 24

16. Sub-Contracting .............................................................................................................. 25

17. Service Level Agreement (SLA) ......................................................................................... 25

17.1 Purpose and Objective of SLA ....................................................................................... 25

17.2 Definitions .................................................................................................................... 26

17.3 Service level Requirements ........................................................................................... 27

17.4 Performance Tracking and Reporting............................................................................ 27

17.5 Problem Management and Escalation Procedures ......................................................... 27

17.6 Penalties ....................................................................................................................... 27

18. Liquidated Damages (LD) ................................................................................................ 28

19. Adherence of Cyber Security Policy ................................................................................. 28


ReBIT/2020 / CPO / 023

Confidential of 65

20. Confidentiality ................................................................................................................ 29

21. Limitation of liability ....................................................................................................... 29

22. Indemnification ............................................................................................................... 29

23. Responsibility for Completeness ..................................................................................... 31

24. Vendor Security Risk Assessment .................................................................................... 31

25. Force Majeure ................................................................................................................. 31

26. Vicarious Liability ............................................................................................................ 32

27. Non-Payment of items/activities fees .............................................................................. 32

28. Assignment ..................................................................................................................... 32

29. Non‐Solicitation ............................................................................................................... 32

30. No Employer‐Employee Relationship ............................................................................... 32

31. Ownership ....................................................................................................................... 32

32. Tender/RFP Cancellation ................................................................................................. 33

33. Publicity .......................................................................................................................... 33

34. Dispute Resolution .......................................................................................................... 33

35. Jurisdiction ...................................................................................................................... 33

Annexure A: Submission Checklist ............................................................................................. 34

Annexure B: Bid submission form .............................................................................................. 36

Annexure C: Self Declaration Relatives in ReBIT ......................................................................... 38

Annexure D : Self Declaration Sexual Harassment of Women at Workplace (Prevention, Prohibition

and Redressal) Act, 2013 ........................................................................................................... 39

Annexure E : Bidders Queries Format ........................................................................................ 40

Annexure F : Bidder’s Details ..................................................................................................... 41

Annexure G : Minimum Eligibility Criteria .................................................................................. 42

Annexure H : Technical Specifications ....................................................................................... 45

Annexure I : Price Bid Format ..................................................................................................... 50

Annexure J : Bidder’s Experience .............................................................................................. 52

Annexure K : Manufacturer’s authorisation form (MAF) ............................................................. 53

Annexure L : Proposed team profile ........................................................................................... 54

Annexure M : Bank Guarantee for EMD ...................................................................................... 55

Annexure N: Performance Bank Guarantee................................................................................ 57

Annexure O : Confidentiality and Non-Disclosure Agreement Undertaking ................................ 60

Annexure P – Instructions for Online Bid Submission ................................................................. 62

Annexure Q : Work Plan Format ................................................................................................. 64

Annexure R – Product Demo and Presentation ........................................................................... 65


ReBIT/2020 / CPO / 023

Confidential of 65

1. About ReBIT

Reserve Bank Information Technology Private Limited (ReBIT) has been set up by the Reserve Bank

of India (RBI), to take care of the IT requirements, including the cyber security needs of the Reserve

Bank and its regulated entities. ReBIT advises, implements and monitors internal or system-wide

IT projects (both existing & new) of the Reserve Reserve Bank of India and manages its critical IT

systems as mutually decided. It ensures the cyber security of RBI’s IT systems through

implementation of universal frameworks and best practices to manage cyber risk. ReBIT also

assists RBI in the IT Systems examination and cyber resilience assessment of regulated entities,

advises on emerging threats in cyber security, supports in cyber security incident analytics and

undertakes cyber security risk assessments both for existing regulated entities and new entrants.

ReBIT also engages with key stakeholders to promote best practices, engage in technology policy

research and promotes innovation in use of technology.

2. Invitation of Bids

Reserve Bank Information Technology Pvt. Ltd. hereinafter also referred to as ‘ReBIT’, issues this

Request for Proposal, hereinafter called ‘RFP’. ReBIT proposes for Setup and implementation of

Multi Factor Authentication (MFA) Solution and issues this Request for Proposal (RFP) for

selection of a vendor for the aforementioned purpose.

This RFP is an invitation for responses from eligible bidders. No contractual obligation on behalf

of ReBIT whatsoever shall arise from the RFP process unless and until a formal contract is signed

& executed by duly authorized official of ReBIT and the successful Bidder. However, until a formal

contract is executed, this RFP together with ReBIT’s written acceptance & notification of award

shall constitute a binding contract with the successful Bidder.

Bidder(s) are expected to examine all instructions, forms, terms, specifications, and other

information in the RFP document. Failure to furnish any information required by the RFP document

or to submit a bid not substantially responsive to the RFP document in every respect will be at the

Bidder’s risk and shall result in the rejection of its bid. The procedure and terms & conditions for

submission of bid are enumerated in this RFP.

All offers of the Bidders shall be unconditional and once accepted (with or without modifications)

by ReBIT shall be binding between ReBIT and such Bidder. This document shall not be transferred,

reproduced or otherwise used for purpose other than for which it is specifically issued

3. Definition of terms

Throughout this RFP, the following terms shall be interpreted as indicated below unless

inconsistent with the subject matter or context:

i. Bidder / Service Provider – An eligible entity/firm submitting a Proposal/Bid in response to

this RFP. The legal entity who signs and submits the bid and the Earnest Money Deposit.

ii. ReBIT/ Purchaser - Reference to “ReBIT”, “the ReBIT” and “Purchaser” shall be determined in

context of this RFP.

iii. Proposal/ Bid – the Bidder’s written reply or submission in response to this RFP.

iv. RFP – The Request For Proposal (this document) in its entirety, inclusive of any

addenda/corrigendum that may be issued by ReBIT.

v. Solution/ Services/ Work/ System – “Solution” or “Services” or “Work” or “System” or “IT

System” means all services, scope of work and deliverables to be provided by a Bidder as

described in the RFP and include services ancillary to the development of the solution, such as

installation, commissioning, provision of technical assistance, training, and other obligations

of the Supplier covered under the RFP.

vi. Project Cost – Project cost would be initial cost / software cost / customisation cost /

installation cost/ commissioning cost / training cost / technical assistance cost & support cost

as requested in the price bid.

vii. Change Management – Any request by ReBIT that results in changes in the structure of the

application or a new module is added would be considered as Change Management. Any minor

changes required in the application such as addition / deletion / alteration of a row / column

/ field, additional report, menu items will not be considered as part of Change Management

and should be supported by the support engineer.


ReBIT/2020 / CPO / 023

Confidential of 65

4. Minimum Eligibility Criteria

Only those Bidders who fulfil the eligibile criteria mentioned at Annexure – G are eligible to

respond to this RFP. Document(s) in support of eligibility criteria are required to be submitted

along with the Technical Bid. Bids received from the Bidders who do not fulfil any of the eligibility

criteria Mentioned are liable to be rejected.

5. Scope of Work and project milestone

5.1 General terms of the scope of work

Based on the contents of the RFP, the Bidder shall be required to propose a solution, which is

suitable for ReBIT, after taking into consideration the effort estimated for implementation of the

same and the resource and the equipment requirements. ReBIT expressly stipulates that Bidder’s

selection under this RFP is on the express understanding that this RFP contains only the broad

provisions for the entire assignment and that the deliverables and the services in connection

therewith are only a part of the assignment. The Bidder shall be required to undertake to perform

all such tasks, render requisite services and make available all such resources as may be required

for the successful completion of the entire assignment at no additional cost to the ReBIT

notwithstanding what is stated here and what is not stated.

The Bidder has to envisage all necessary services to be provided and ensure the same is delivered

to ReBIT. ReBIT will not accept any plea of the Bidder at a later date for omission of critical services

on the pretext that the same was not explicitly mentioned in the RFP.

5.2 MFA requirements

i. The bidder shall provide the MFA solution as per the requirements mentioned at Annexure-

H

ii. The provided solution shall be of the latest versions and should not be end of support for

the next 3 years.

iii. The initial requirement is for 275 users (subscription licenses) which may be scaled upto

400 users. These users will be using the multifactor authentication.

iv. The successful bidder shall provide all necessary software licenses, tools, deploy,

implement, train and handover the solution to ReBIT.

v. ReBIT intends to integrate the offered solution with multiple applications/server/network

devices.

vi. “User” should be able to access all MFA integration application/systems with single license.

There should not be any restriction on the number of devices.

vii. The effective start date of the licenses shall be Go-live and acceptance by ReBIT.

viii. License subscription cost shall also include product support. Product support shall include

updates, upgrades, patches/bug fixes, problem resolution etc. If, any new version of the

software is released during the subscription period, then the same shall be made available

to ReBIT without any additional cost. 24 x 7 problem resolution support shall be provided

through telephone/ e-mail during the subscription period.

ix. The proposed solution should support both IPv4 and IPv6.

x. Bidder shall submit the manufacturer/OEM authorisation letter to confirm that

product/solution is delivered from Manufacturer/OEM and Bidder is partner with OEM for

the above scope of work and submit the same as part of the bid. This agreement should

include but not limited to the ownership of the activities, timelines and resources

associated to the activities.

5.3 Hardware requirements

The bidder should provide all the required hardware details along with detailed configuration

required for hosting the Multifactor Authentication Solution in ReBITwhile submitting the

Technical Bid.


ReBIT/2020 / CPO / 023

Confidential of 65

5.4 Implementation

5.4.1 Deployment

i. The selected bidder shall deploy Multifactor Authentication Solution that complies with

specifications mentioned in Annexure – H.

ii. The Bidder’s resources will be required onsite during the deployment phase.

iii. The selected Bidder shall assign project manager and associated support personnel for

this project. The number of resources required to deploy for MFA implementation shall be

provided along with their skillsets (example L1, L2, L3 implementation or Operations) with

ReBIT as part of the final project plan.

iv. The solution provider should be able to integrate with all the required, existing and

proposed future IT systems/tools. Solution Should integrate with all the third party

endpoint agents like AV, DLP, Proxy, ITSM, MFT, Vaultize, Encryption, Backup solution

clients, industry leading PIM solution etc.

v. The solution provider should provide a detailed implementation Plan of action (POA) for

Multifactor Authentication solution. It should include the approach, risk, benefits and

downtime (if any). Post approval of POA, solution provider should work with ReBIT’s

Internal teams and application or business owners to complete the implementation of the

solution.

vi. ReBIT will perform its own Vulnerability assessment/ Penetration testing (VAPT) & Risk

assessment on the entire solution before going live and the solution provider needs to fix

all the vulnerabilities/risks highlighted in the reports at no extra cost to ReBIT.

vii. The Solution provider will deploy and validate all the features in the Multifactor

Authentication solution including (but not limiting to) Dashboard setup, use cases, auto-

remediation of security policies/patches and report customization.

viii. Setting up of test environment at ReBIT site will be Bidder’s responsibility.

ix. The Bidder should provide the deliverables and sign off for each of the deliverables at

various stages of customization and implementation.

5.4.2 Process and System Study

The Bidder is expected to study the RFP to gain an understanding of the current and proposed

business processes in the ReBIT. The Bidder is expected to identify business process areas where

the Bidder may need to obtain further understanding. The Bidder is expected to identify further

process improvement opportunities.

The successful Bidder will be required to create a detailed System Requirement Specification

document with the understanding. The SRS preparation team of the successful Bidder should be

experienced, with full functional knowledge of the software. The ReBIT reserves the right to ask

for replacement of any team member if the ReBIT feels he/ she is not adequately qualified for the

same. The SRS Document shall be signed off by the ReBIT on acceptance of the same.

Preparation of System Requirement Specification Document

i. The Bidder is expected to create System Requirement Specification (SRS) Document under

the scope of the Multifactor Authentication Solution implementation including all proposed

interfaces and customisations involved. The System Specification Document shall be

signed off by the ReBIT on acceptance of the same.

ii.

iii. The Bidder may suggest amendments to the processes that would suit the product solution

offered for a seamless integration and document the same to suit the proposed

“Multifactor Authentication Solution” as envisaged in the Study Report. However, the

objective and output of the process should not change. On acceptance of the final solution

by the ReBIT, the Bidder cannot deviate from the agreed solution under any circumstance

unless agreed by the ReBIT. The agreed solution shall be binding on the part of the Bidder

and inability to deliver the solution may result in annulling the contract and the same being

awarded to another vendor as per the decision of the ReBIT. The ReBIT shall impose

financial penalties or / and invoke the performance ReBIT guarantee in such circumstances.

iv. The Bidder is expected to prepare the System Requirement Specification Document

containing the following details but not limited to:

a. Overview of the Process with System/Application FAQs


ReBIT/2020 / CPO / 023

Confidential of 65

b. Security features

c. Application deployment architecture with Hardware topology

d. User manual & Run Book

e. Version description document

f. Application upgradation and patches management document

g. Architecture & design document including Traffic flow document between the

devices

h. IP address allocations to various components

i. Project Plan with milestones, resourcing and deliverables

j. Inventory list consisting hostnames, make, model, serial number

k. Testing cases and test results documented before and after implementation.

l. Standard Operating Procedures

m. Industry Best Practice Use cases and customization for ReBIT

n. Vendor support details and escalation matrix

o. OEM support details and escalation matrix

p. List of reports related directly/ indirectly to module(s)/ customisation/ interface

q. IT Security and Backup Architecture and parameterization with relevant details

r. Handling of Logs

s. User Manual and on-line tutorial

t. Performance Measurement Matrix.

5.4.3 Backup and Archiving

i. There shall be a provision for taking backups and archive the replica of the systems’

database and the application as well. There should be a provision of adequate Business

Continuity Management (BCM) to maintain Business continuity plan.

ii. The methodology for the backing up of data and its archival may be indicated.

iii. The methodology or strategy used should be in alignment with ReBIT's Backup and Archival

strategy.

iv. The Application should have a capability for easy retrieval of the backed-up data (both

application and the database) with least amount of manual intervention with no data Loss

events.

5.4.4 Activity Log Management

There shall be provision for complete audit trail of all operations by the users. There shall be

provision / functionality to track down all backend modifications as per assigned users’ roles and

responsibilities if any, by any user, which can be retrieved and analysed to get the complete history

of the issue. The vendor may take it as an input for redressal of the issue, if the same is application

related.

5.4.5 System Integration Testing and User Acceptance Testing

i. Bidder can use the ReBIT test hardware which is provided for this project for UAT.

ii. The Bidder’s resources will be required onsite during the testing phase.

iii. All security issues identified will have to be either resolved or a mutually accepted

remediation should be agreed upon between the ReBIT and successful Bidder.

iv. The Bidder shall provide test plan, test cases and test results.

v. The ReBIT shall commence the User Acceptance Testing only after a formal confirmation

that the system is ready for UAT.

vi. The Bidder should provide test cases for UAT for ReBITs review. Upon finalisation of test

cases, user acceptance testing will be started by the business users.

vii. Any deviations/ discrepancies/ errors observed during the testing phase will have to be

resolved by the Bidder. Any exceptions will have to be documented and signed off by the

ReBIT.

viii. The Bidder shall first deliver the base/UAT version of the software and the Bidder shall

assist ReBIT to conduct a preliminary test to ascertain the extent to which the software has

met business requirements as furnished in the RFP and complies with the specifications.

ix. The Bidder is expected to make all necessary modifications to the solution, customisations,

interfaces, etc., if there are performance issues or errors identified during testing. The

Bidder will assist ReBIT in preparing the test cases, including the test data. The Bidder will


ReBIT/2020 / CPO / 023

Confidential of 65

assist in conducting all the tests and comparing/ analysing the results. Any bugs identified

will have to be rectified and subsequent patches/ versions will also have to be tested

without any additional cost to ReBIT.

x. The testing also includes testing to ascertain whether the response time, the bandwidth

usage & performance of the solution are as per the expectations of ReBIT and would involve

an error free dry run of the customised solution and end-run simulation.

xi. REBIT may accept the application software only after the critical or major Bugs are fixed.

xii. The Bidder shall be responsible for maintaining appropriate program change control and

version control for all the modifications/ enhancements carried out during the

implementation/ testing phases.

xiii. The Bidder shall be responsible for providing and updating system & user documentation

as per the modifications/Changes done in the MFA solution.

5.4.6 Security Requirements

i. Provide security in compliance with ReBIT security requirements to protect the

confidentiality, integrity, and availability of the information systems.

ii. Develop, implement, maintain and use best in class industry proven safeguards that

prevents the misuse of information systems and appropriately protect the confidentiality,

integrity, and availability of information systems.

iii. Maintain a security plan that complies with industry accepted security requirements.

Security Plan should be embedded within the Project Plan & approved by the ReBIT). The

security plan would be reviewed by the ReBIT during the implementation phase.

iv. The Bidder shall abide by the access level agreement to ensure safeguards of the

confidentiality, integrity, and availability of the information systems.

v. Selected bidder will not copy any data obtained while performing services under this RFP

to any media, including hard drives, flash drives, or other electronic device, other than as

expressly approved by REBIT.

vi. Standards Benchmark – To ensure that all parties have a common understanding of any

security issues uncovered, the independent organization that conducts the VAPT shall

provide vulnerability rating’s (preferably) based on industry standards as defined by First’s

Common Vulnerability Scoring System (CVSS) and MITRE’s Common Weakness

Enumeration (CWE).

5.4.7 Training

ReBIT expects the Bidder to train the administrator/business users till the personnel gain enough

expertise in the system and capable of taking over the training function. The training should

include features, facilities, operations, implementation, troubleshooting, system administration,

database administration, operating system administration, DR elements. All training will be hands-

on training along with the trainer for the users. The Bidder should also provide e-learning facilities

for users of the solution.

5.4.8 Documentation Requirement

i. Full documentation of the project is to be included in the deliverables by the successful

bidder. ReBIT may provide a format for documentation to the successful bidder.

ii. Bidder should provide all documents to ReBIT as listed below (where applicable)

a. Project Plan with milestones, resourcing and deliverables.

b. Architecture & design document including Traffic flow document between the

devices.

c. Infrastructure build document.

d. IP address allocations to various components.

e. Network Architecture/flow document.

f. Inventory list consisting hostnames, make, model, serial number.

g. Contract number for raising RMA with OEM in case of hardware failure.

h. Testing cases and test results documented before and after implementation.

i. Standard Operating Procedures.

j. Industry Best Practiced Use cases and customization for ReBIT.

k. Vendor support details and escalation matrix.

l. OEM support details and escalation matrix.


ReBIT/2020 / CPO / 023

Confidential of 65

iii. Architectural document requirements:

a. Solution deployment architecture with Hardware topology

b. User manual

c. Version description document

d. Problem reports and Issue logs

e. System/Application FAQs

f. Application upgradation and patches management document

g. Run Book

iv. Bidder is expected to provide user and technical documentation including Installation,

Commissioning, Implementation, security check Manuals.

5.4.9 Go-Live

Go-Live is the phase in which the application is made available to all the users to carry out live

transaction.

i. Before the final Go-Live the Bidder has to complete the development/ customization of the

application as per the Functional and Technical Specifications agreed with the ReBIT.

ii. The Go-Live is an end‐to‐end responsibility of the Bidder who will manage total planning,

hand holding support as per the scope of work.

iii. Bidder should provide 30 Days of hand holding support post Go-Live.

iv. On satisfactory performance of application post 30 days from Go-Live, ReBIT will issue

Completion Certificate.

v. In case of the Go-Live delays by the Bidder, the financial Penalty as per the ReBIT’s

discretion will be imposed on the Bidder at 5% of the total contract value per month of

delay, to the maximum of 10% of the total contract value as per the agreement between

the ReBIT and the successful Bidder.

vi. Acceptance: A one-month test period will be used by ReBIT to evaluate the selected

Multifactor Authentication solution. After the selected solution has been successfully

tested and implemented, ReBIT and the Selected bidder shall agree on the start date of the

Go-LIVE. If any issues/problems are identified during the test period and Security

assessment (VAPT) bidder has to fix the same without any additional cost to ReBIT.

vii. VAPT exercise shall be conducted by the ReBIT, it shall be the Bidder’s responsibility to

rectify the gaps unearthed during the VAPT at no additional cost to the ReBIT during the

contract period.

viii. The implementation phase shall be deemed as completed in all respects only after

a. All applications and services are implemented as per the intent of this RFP.

b. All functionalities mentioned in this RFP have gone live.

c. All the related trainings are completed, and post training assessment carried out

by the ReBIT.

5.5 Need based on-site support

i. The price quoted by the bidder should cover all the support to the solution including any

updates/upgrades and fixing any issues faced. Bidder should provide onsite support to

fix the issues for the period of 3 Years if the solution/fix required OEM/bidder onsite

support. Remote access for MFA setup would not be permitted.

ii. The bidder is required to provide support throughout the contract period of three years.

iii. Unlimited on call support and onsite support, if the issue is not resolved through on call

support within subscription period.

iv. Fulltime onsite support is not required. Only when there are issues, an on-site support will

be required during the subscription period.

v. Bidder should provide and implement any security patches/ upgrades/ updates for the

solution as and when released by the Vendor/ OEM or as per requirements of ReBIT and

the same shall not be included as a part of change management. Bidder should bring to

notice of ReBIT all release /version change.

vi. Bidder should obtain a written permission from ReBIT before applying any of the patches/

upgrades/ updates in UAT or live environment.

vii. Onsite support should be provided to implement / configure new features or

functionalities as and when required by ReBIT


ReBIT/2020 / CPO / 023

Confidential of 65

viii. The bidder should share / deliver SLA reports and Call Reports to validate SLA

commitments and to approve payments.

5.5.1 Guidelines for Maintenance and Support

i. Certify and complete continuity planning according to ReBIT security requirements before

moving information systems into a production status. Audits will be conducted by ReBIT

to ensure security, any gaps identified will be remediated by the vendors.

ii. Vendor should develop a disaster recovery plan for restoration of the system in the event

of a disaster or major incident.

iii. Vendor should follow ReBIT’s Change, Patch & Incident management polices and

processes.

iv. Vendor should maintain audit logs for all monitoring and events according to ReBIT policy

and provide this information upon request. These audit logs must be secure and stored

as per defined retention policy.

v. All exceptions to be documented and signed off by appropriate ReBIT personnel.

vi. Configuration items such as computers and other devices, software contracts and licenses,

third party tools and business services which are related to the application should be

disclosed.

vii. Additional guidelines would be provided based on the support scenario that’s decided

between vendor and ReBIT.

5.6 Project Milestones

Project Milestones Deliverables/Key Activities Payment

Implementation upto

Go Live as mentioned

in section 5.4 for 275

users

• Pre-requisite fulfilment for test and PROD

setup

• software deployment with required

configurations/custmisation

• VAPT Compliance sign off

• Completion of ReBIT audit

• Fixing VAPT & RA observations

• Completion of Security risk assessments

• User and Technical Documentation

• Client Training Feedback from Users

• Client Handbook

• E-Learning

• scope as mentioned in section 5.4

• UAT sign off

• Deployment in PROD setup and enable

services for LIVE operations.

• Go-live certificate

100% of License /

subscription cost for

Year 1 for 275 users (S.

No. 1 of Annexure I -

Price Bid Format)

30 days after Go-Live • Project completion certificate 100% of

Implementation cost (S.

No. 2 of Annexure I –

Price Bid Format)

Need based on-site

Support for 3 Years as

per Section 5.5

• Submission of Quarterly Call Reports for

technical support provided

Need based on-site

Support Cost will be

paid on Yearly basis.

Payment will be made

at the end for the

support provided for

respective year. (S. No.

3 of Annexure I – Price

Bid Format)


ReBIT/2020 / CPO / 023

Confidential of 65

Renewal of Licenses /

Subscription for Year

2 and Year 3

Renewal of Subscription for Year 2 and Year 3

based on ReBIT’s requirement

100% of License /

subscription cost for

Year 2 and Year 3 (S.No.

1 of Annexure I - Price

Bid Format)

5.7 Post Implementation

The post implementation period will start after 30 days of successful “Go-Live” of the project. Post

implementation will be from the day starting after the last day mentioned in Project Completion

Certificate by ReBIT.

5.7.1 Incident Management and Response Management

The Bidder should define various categories of incidents and response times for resolution of the

same. These should be commensurate with the service levels requirement specified in the RFP.

The Bidder should also define an escalation matrix for escalation of incidents in the event that it

is not resolved within the defined time frame. The Bidder should also provide periodic reports to

ReBIT detailing the various incidents reported divided category wise along with steps taken to

resolve the same and response time for the same. The Bidder should provide access to the incident

management system to the authorised users of ReBIT.

5.7.2 Change Management

i. Post-Implementation, any request by the ReBIT that results in changes in the structure of

the application and / or a new module is added, and which requires considerable effort for

customisation would be considered as part of Change Management. Any minor changes

required in the application such as upgrade, Patch Management, Security patches, bug

fixing, additional report and application and server maintenance items will not be

considered as part of Change Management. The vendor should maintain records of all such

changes made in the application with a proper audit trail and time-stamp. There should be

an appropriate roll back mechanism which is identified and tested if changes are not

successful.

ii. Any standard functionality available in the proposed Multifactor Authentication Solution

would not form part of the Change Request submitted by the Bidder. Bidder should provide

and implement any security patches/ upgrades/ updates for Software/ OS/ Middleware

etc. as and when release by the Vendor/ OEM or as per requirements of the ReBIT and the

same shall not be included as a part of change management. Bidder should bring to notice

of the ReBIT all release /version change. Bidder should obtain a written permission from

the ReBIT before applying any of the patches/ upgrades/ updates in UAT or live

environment.

iii. The procedure that would be adopted for evaluating Change Requests will be based on the

work breakdown method/ Function Point Analysis method or the method mutually agreed

upon with the vendor.

iv. The Bidder is required to develop a change management methodology to ensure all

application changes and technical changes (after go-live, and in the case of network

changes, from the start of contract), are reviewed, tested, approved, implemented, and

verified post implementation.

v. All change requests should be documented and should have a numerically assigned

number in sequential order. A database of all change requests should be maintained, all

change requests should be classified, and approval and escalation mechanisms should be

defined as per classification.

vi. The change request should include an appropriate roll back mechanism which is identified

and tested if changes are not successful. The ReBIT would initiate or invoke penalty clause

in case of repeated roll-back of change request (more than 2 roll backs).

vii. Changes should be implemented in a controlled manner and should be tested in the test

(non-production) environment prior to implementation. The impact of technical changes

on application environment should also be performed. Dependencies of changes should

be documented.


ReBIT/2020 / CPO / 023

Confidential of 65

viii. All changes should be reviewed, and the databases of changes should be reviewed for any

actions taken post implementation. Emergency change requests should follow a defined

and controlled process.

ix. A release schedule should be maintained for all changes, so as to provide minimum

disruption to business services. The Bidder will be required to perform analysis of change

requests to review frequently occurring issues, trend analysis, and an analysis report to be

provided to the ReBIT along with a summary report.

6. Locations to be covered

The services are required at ReBIT’s offices in Navi Mumbai. However, ReBIT reserves the right to

change locations/add new locations (with mutual agreement if required) as per ReBIT’s

requirement within India. Cost for travel of Bidder’s personnel travel from other locations in India

and hotel/incidental expenses are to be borne by Bidder.

7. Cost of Bidding

The Bidder shall bear all the costs associated with the preparation and submission of its bid and

ReBIT will in no case be responsible or liable for these costs, regardless of the conduct or outcome

of the bidding process.

8. Bidding Process:

8.1 Language of Bid

The language of the bid response, supporting documents and any communication with ReBIT must

be in written English only.

8.2 Authorization to Bid

The proposal/ bid being submitted would be binding on the Bidder. As such, it is necessary that

authorized signatory of the firm or organization sign the bid documents. The signatory should be

either CEO or authorised by the CEO or the Board of the organization. The Bidder shall provide

proof of signature identification for the above purposes as required by ReBIT

i. All pages of the bid shall be initialled by the person or persons signing the bid.

ii. Bid form shall be signed in full & official seal affixed.

iii. Any inter‐lineation, erasure or overwriting shall be valid only if they are initialled by the

person or persons signing the Bid.

iv. All such initials shall be supported by a rubber stamp impression / digital signature of the

Bidder’s firm.

A copy of board resolution along with a copy of power of attorney (POA wherever applicable)

showing that the signatory has been duly authorized to sign the Bid document.

8.3 Bid Security/ EMD

The Bidder should deposit bid security of ₹20,000/- (Rupees twenty Thousand Only) in the form

of a demand draft in favour of Chief Executive Officer .Reserve Bank Information Technology Pvt.

Ltd., payable at Mumbai or a Bank Guarantee in the format prescribed at Annexure M issued from

Scheduled Commercial Bank. Bank Guarantee should be valid for minimum 6 months from the

date of issuance of RFP with claim period of one month. The scanned copy of DD/ BG should be

submitted along with technical bid and the original DD/BG shall be couriered to the below address

so as to reach us on or before the date of opening of technical bid:

Address: The Chief Executive Officer, Reserve Bank Information Technology Pvt Ltd (ReBIT502,

Building No 1, MindSpace Juinagar, Nerul, Navi Mumbai – 400706)

The failure or omission to deposit or keep deposited the Earnest Money shall disqualify the Bidder.

No interest shall be payable by ReBIT in respect of the EMD amount.

The EMD is refundable after signing of the contract and furnishing Performance Bank Guarantee

(PBG) for successful bidders.

The EMD of an unsuccessful Bidder shall be refunded within 30 days after the final decision on

the Bids or on expiry of the bid validity period whichever is earlier.


ReBIT/2020 / CPO / 023

Confidential of 65

The unsuccessful Bidders should submit the Letter for Refund of EMD/Bid Security for returning

the bid security amount.

Micro & Small Enterprises (MSE) units and Start-ups are exempted from payment of EMD and tender

fee provided the products and/or services they are offering, are manufactured and/or services

rendered by them. Exemption as stated above is not applicable for selling products and/or

services, manufactured/ rendered by other companies. Bidder should submit supporting

documents issued by competent Govt. bodies to become eligible for the above exemption.

The Earnest Money Deposit (EMD) may be forfeited:

• If the successful bidder withdraws/revokes offer or modifies/changes the same.

• If the successful bidder fails to submit the Performance Bank Guarantee within the stipulated

period. Additionally, ReBIT at its discretion may also cancel the contract awarded to the

selected Bidder without giving any notice.

• If the successful bidder makes any statement or encloses any form/document which turns out

to be false/incorrect/mis-representation at any time during the RFP / Contract finalization of

successful bidder / signing of the contract.

• Where the Bidder, withdraws after opening of Part I / Technical Bid at any time before

finalization of successful bidder without any satisfactory / valid reasons. If any technically

qualified bidder fails to login into the Reverse Auction portal, where applicable, then the same

will be treated as withdrawal of the Bid.

• If the bidder makes any statement or encloses any form/document which turns out to be

false/incorrect/mis-representation at any time during the RFP process.

8.4 Bid and Price Validity

Bids should remain valid for the period of at least 180 days from the last date of submission of

bid and reverse auction completion, where applicable. In case the last date of submission of bids

is extended, the Bidder shall ensure that validity of bid is reckoned from modified date for

submission. Further extension of the validity of the bid will be decided by ReBIT in case of need.

Any extension of validity of Bids will not entitle the Bidder to revise/modify the Bid document.

Finalized prices shall remain valid for contract period from the last date of submission of

commercial bid and reverse auction completion, where applicable. The commercial offer shall be

on a fixed price basis, no upward revision in the price would be considered. ReBIT reserves the

right to call for fresh quotes at any time during the Bid validity period, if considered, necessary

8.5 Pre-Bid Meeting

For the purpose of clarifications of doubts of the Bidders on issues related to the RFP, ReBIT intends

to hold a pre-bid meeting on the date & time as indicated in the RFP. Only authorized representative

of Bidder(s) (maximum two) will be allowed to attend the Pre-bid meeting.

Any modification of the RFP, which may become necessary as a result of the Pre- bid meeting will

be made available by ReBIT exclusively through the issue of a Corrigendum which will be published

on ReBIT’s website www.rebit.org.in/procurement and CPP Portal.

One or more pre-bid conferences may be held for clarifying issues/clearing doubts (if any), about

the specifications and other allied technical/commercial details of the equipment, product and

services projected in the tender document and for ensuring that the technical requirements

provide a level playing field. The date, time and place of the pre-bid conference will be as indicated

in the RFP document.

ReBIT shall not be obligated to respond to any or all of the queries.

8.6 Clarifications and Amendment in RFP Documents

Queries / clarifications will not be entertained over the phone. Bidders requiring any clarification

of the RFP may notify ReBIT in writing strictly as per the format given in Annexure-E at the

address/by e-mail given in this document within the date/time mentioned in the schedule of

events.

It may be noted that no query of any BIdder shall be entertained / received after the mentioned

date. Queries raised by the prospective Bidder(s) and ReBIT’s response will be available at ReBIT

website.

http://www.rebit.org.in/procurement


ReBIT/2020 / CPO / 023

Confidential of 65

The Bidder is requested to collate and submit queries together to seek clarifications / responses

from ReBIT. The Bidder should ensure that all the queries and clarifications are communicated in

email on or before the date given in the schedule of events of this RFP document. Bidders are

requested to visit ReBIT’s website or check mails for clarifications and other communications.

Any modification of the RFP, which may become necessary as a result of the queries, shall be

made available by ReBIT exclusively through the issue of an Addendum/Corrigendum, will be

published on ReBIT’s website https://rebit.org.in/procurement and on the CPP Portal.

Prior to the last date for bid‐submission, ReBIT may, for any reason, whether at its own initiative

or in response to clarification(s) sought from the prospective Bidders, modify the RFP contents/

covenants by amendment. Clarification /amendment, if any, will be notified on ReBIT’s website.

No individual communication would be made in this respect. In order to provide Bidders

reasonable time to take the amendment into account for preparing their bid, the ReBIT may, at its

discretion, extend the last date of submission of bids.

8.7 Two-part Bid

The Bid shall be submitted in two parts:

Part I : Technical Bid. No price information should be provided in Part-1.

Part II : Price Bid

8.7.1 Part I : Technical Bid

i. The Technical Bid submitted should be complete in all respects and contain all information

asked for in this document. It should not contain any price information.

ii. The following original documents are required to be submitted along with the technical

bid:

a. Scanned copy of the bid security in the form of a demand draft or equivalent Bank

Guarantee from commercial Bank along with the Technical Bid to be submitted online

and the original copy of the same to be couriered as per the instructions provided in

the RFP.

b. The documents as requested in Annexure – A are to be submitted.

c. All the Annexures should be submitted on letter head of Bidder’s company and duly

signed with seal of the company. Self atteseted photocopies of relevant documents /

certificates are to be submitted as proof in support of various information submitted

in aforesaid Annexure and other claims made by the Bidder.

d. Detailed Architecture of the proposed solution with various features/functions of the

system/sub-system/Network including fail-over methodology/strategy are to be

submitted.

e. Documents and brochures pertaining to product that will be deployed in the proposed

solution.

f. The Bidder should ensure that all the Annexures are submitted as prescribed by ReBIT.

In case it is not in the prescribed format, it is liable to be rejected.

8.7.2 Part II : Price Bid

The Price Bid must not contradict the Technical Bid in any way and should include the cost of

all the items offered. The suggested directive for Commercial offer is as follows:

i. The Price Bid should be submitted as per Annexure-I by way of entering the values in the

format.(not in hand written).This must contain all price information, prices should be

exclusive of GST (for all products, services, implementation, certificates etc.). However, all

the Tax details to arrive the final payable to vendor should be mentioned in Price Bid.

ii. Payment for licences consumed subsequently will be done as per the license rate (unit

rate) shared by the Bidder as response to this RFP in Annexure I.

iii. The Bidders should not offer any options or any conditional offers to the ReBIT while giving

the price information. The offer should strictly be in conformity with the items as specified

by ReBIT. No additions or deletions to the Annexure I is allowed. Any deviations may lead

to disqualification of the bid.

iv. All the prices quoted shall be in Indian Rupees (₹). The quote shall not be subject to any

price escalation subsequently. Rate should be quoted against each item separately. Only



ReBIT/2020 / CPO / 023

Confidential of 65

fixed price commercial bids indicating total price for all the deliverables and services

specified in this RFP will be considered.

v. The prices mentioned in Annexure I should be CIF ReBIT office, Navi Mumbai.

vi. The price quoted should be inclusive of cost of delivery of equipment, installation,

customization, operate, maintenance and support of hardware and software as per ReBIT’s

requirement.

vii. ReBIT will not pay any Labour charges for transportation, Road Permit, installation of

hardware, items separately. All such costs, if any, should be absorbed in the TCO.

viii. All out of pocket expenses, travelling, boarding and lodging expenses for the entire project

period and subsequent agreement is included in the prices and the Bidder shall not be

entitled to charge any additional costs on account of any items or services or by way of

any out of pocket expenses, including travel, boarding and lodging etc

8.8 Submission of bids

The Bidders must submit technical and price bids, all documents as per requirement of RFP in the

CPP portal within the timelines mentioned in the RFP. Original DD/BG for EMD must be submitted

physically in sealed cover at the following address on or before scheduled date and time.

To,

The CEO,



ReBIT may, at its discretion, extend the deadline for submission of bids by releasing corrigendum

to this tender document.

All submissions will become the property of ReBIT. Recipients shall be deemed to license and

grant all rights to ReBIT to reproduce the whole or any portion of their submission for the purpose

of evaluation, to disclose the contents of the submission to other Recipients who have registered

a submission and to disclose and/or use the contents of the submission as the basis for any

resulting RFP process, notwithstanding any copyright or other intellectual property right that may

subsist in the submission.

8.9 Modification and Withdrawals of Bid

No modification in the Bid shall be allowed, after the deadline for submission of

Bids.No Bid shall be withdrawn in the interval between the deadline for submission of Bid and the

expiration of the period of Bid validity specified by the Bidder on the Bid Form. Withdrawal of a Bid

during this interval may result in the forfeiture of EMD submitted by the Bidder.

8.10 Bid opening and Evaluation Process

i. Technical Bids will be opened on the CPP portal as per the timelines mentioned in the RFP.

ii. ReBIT will follow a two-step evaluation and selection process. Technically qualified bidder

with most economical bid (L1) will be selected as the successful bidder.

iii. Bids of those bidders which meet the minimum eligiblity criteria will be considered for

technical evaluation.

iv. The price bids of only technically qualified Bidders shall be opened on the notified date

and time and reviewed to determine whether the price bids are substantially responsive.

v. During the period of evaluation, Bidders may be asked to provide more details and

explanations about information provided in the proposals. Bidders should respond to such

requests within the time frame indicated in the letter/e-mail seeking explanation, if the

Bidder does not comply or respond by the date, their bid will be liable to be rejected.

vi. ReBIT may, at its discretion, waive any minor informality, nonconformity or irregularity in

a bid which does not constitute a material deviation and financial impact, provided such

waiver does not prejudice or affect the relative ranking of any Bidder. Wherever necessary,

observations on such minor issues (as mentioned above) ReBIT may conveyed to the

Bidder, asking them to respond by a specified date also mentioning therein that, if the

Bidder does not respond by the specified date, their bid will be liable to be rejected.

vii. The Bidder at no point of time can excuse themselves from any claims by ReBIT whatsoever

for their deviations in conforming to the terms and conditions, payment schedules,

timeframe for implementation, etc. as mentioned in this RFP.


ReBIT/2020 / CPO / 023

Confidential of 65

8.10.1 Technical Bid Evaluation

i. The technical bids will be opened by ReBIT online as per the bid opening date and time

specified in the RFP.

ii. Bids of those bidders which meet the minimum eligiblity criteria will be considered for

technical evaluation.

iii. Initial proposal scrutiny will be held and proposals will be treated as non-responsive and

rejected, if proposals are:

• Not submitted in the format specified in this RFP

• Received without letter of authorisation

• Non-compliant with any of the clauses specified in this RFP

• Have lesser than prescribed validity period

• Submitted with incomplete information, subjective, conditional offers and partial

offers

• Submitted without the documents required under this RFP including EMD.

iv. Eligible technical proposals shall be evaluated by ReBIT according to the technical

evaluation process defined in this RFP. ReBIT may, at its discretion, seek clarifications or

ask the Bidder to make technical presentations on any aspect.

v. ReBIT at its discretion may reject the proposal of the Bidder without assigning any reason

whatsoever, if in ReBIT’s opinion, the Solution Sizing was not made appropriately to meet

the performance criteria as stipulated by the ReBIT.

vi. The evaluation will be undertaken by a Committee formed for the purpose by ReBIT which

consists of senior ReBIT officials and may also contacint external experts. The decision of

ReBIT regarding the evaluation and selection of the Bidder would be final.

vii. The following criteria shall be used for evaluation of technical proposals

Evaluation Criteria Maximum Marks Cut off

Product Demonstration and

presentation

120

as specified at

Annexure R

All “must-have” requirements of Annexure H

are to be met during product demo.

viii. The total score of “Product Demonstration and Presentation” will be considered as technical

evaluation score.

ix. Bidders, whose technical proposals are responsive, fully compliant and score 80% in overall

technical evaluation shall be considered technically qualified.

x. All technically qualified Bidders will be notified to participate in the price bid opening

process.

xi. The technical bid evaluation decision of ReBIT shall be final.No correspondence shall be

entertained in this regard.

xii. In preparing the response to Technical Criteria, the Bidders are expected to examine the

documents comprising this RFP in detail. Material deficiencies in providing the information

requested may result in rejection of a Proposal. The technical proposal should clearly

demonstrate the Bidders understanding of the assignment requirements and capability

and approach for carrying out the tasks set forth in the RFP. While preparing the Technical

Proposal, the Bidders must give attention to the following:

A. Technical Specification Product Demonstration

i. Technical_Specification mentioned at Annexure - H is comprised of “Must Have” and “Good

To Have” requirements

ii. “Must Have” requirements are knockout criterion and the technical bid will not be

considered for further evaluation.

iii. All the “Must-have” criteria should be demonstrated during the Product demonstrations.

All “Good-to-have” criteria as specified by the bidder in the technical bid shall also be

demonstrated.

iv. “Good To Have” requirement will carry weightage as specified in Annexure - H. Total marks

- 100

v. Detailed response is expected from bidder on each technical point (please be as elaborate

as possible and demonstrate on how bidder’s solution addresses the requirements). Only


ReBIT/2020 / CPO / 023

Confidential of 65

detailed response along with successful demonstration on each point categorised as “must

Have” will be considered. Bidder will be disqualified in case the Bidder do not elaborate on

any of the point of the technical specifications.

vi. Bidders are required to carry out Technical Product Demonstration of the solution

proposed by the Bidder. Demo should be done using web conferencing and/or

videoconferencing.

B. Technical Presentation

i. The Bidder would be invited to make a presentation pertaining to the proposed solution

ii. Total Solution Sizing which would be evaluated by ReBIT’s expert committee (may comprise

of external as well as internal personnel).

iii. We would send a WebEx link and the presentations will be presented remotely

iv. 20 Marks scoring (Presentation Score) will be awarded for presentations.

v. Guidelines for Technical Panel Presentations are provided at Annexure – R.

ReBIT at its discretion may reject the proposal of the Bidder without giving any reason

whatsoever, if in ReBIT’s opinion, the Solution Sizing was not made appropriately to meet

the performance criteria as stipulated by ReBIT.

8.10.2 Price Bid Evaluation

i. The price bids of only technically qualified Bidders shall be opened on the notified date

and time and reviewed to determine whether the price bids are substantially responsive.

ii. If a Bidder quotes NIL or Zero price / consideration, the bid shall be treated as unresponsive

and will not be considered.

iii. Price bid evaluation shall be considered as below in case of any kind of discrepancy:

a. If there is a discrepancy between words and figures, the amount in words shall prevail

b. Where there is a discrepancy between the item‐wise quoted amounts and the total

quoted amount, the item‐wise rate will govern.

c. If there is a discrepancy between percentage and amount, the amount calculated as

per the stipulated percentage basis shall prevail

d. If there is discrepancy between unit price and total price, the unit price shall prevail

e. Where there is a discrepancy between the phase-wise quoted amounts and the total

quoted amount, the phase-wise rate will govern unless, in the opinion of REBIT, there

is obviously a gross error such as a misplacement of a decimal point, in which case the

line item total will govern.

f. If there is a discrepancy in the total, the correct total shall be arrived at by ReBIT.

iv. The amount stated in the bid form, adjusted in accordance with the above procedure, shall

be considered as binding, unless it causes the overall bid price to rise, in which case ReBIT

will be free to accept the Total Bid amount as mentioned in the field “Total Cost of

Ownership (TCO)” in Annexure-I.

v. If the Bidder does not accept the arithmetical corrections made by ReBIT, its proposal will

be rejected.

vi. Items described in technical proposal but not priced in price bid shall be assumed to be

included in the prices of other activities or items.

vii. The best fit and most economical bid based on the TCO in Annexure – I will be selected as

the successful bid.

ReBIT will notify the successful Bidder in writing that its proposal has been accepted.

8.11 Award of contract

On completion of evaluation of price bids, ReBIT will determine the successful Bidder and contract

will be awarded accordingly.

However, ReBIT shall be under no obligation to accept the lowest price bid or any other offer

received in response to this Tender notice and shall be entitled to reject any or all offers including

those received late or incomplete offers without assigning any reason whatsoever. ReBIT reserves

the right to make any changes in the terms and conditions of purchase. ReBIT will not be obliged

to meet and have discussions with any Bidder, and / or to listen to any representations unless

there is change in the terms and conditions of purchase.


ReBIT/2020 / CPO / 023

Confidential of 65

ReBIT shall award the Contract, subject to approval from the approval authority to the Bidder

whose bid has been determined to be substantially responsive and has been determined to be the

shortlisted Bidder. Provided further that the Bidder is determined to be qualified to perform the

contract satisfactorily and their credentials have been verified.Price Negotiation with the tenderers

should be severely discouraged.

Prior to the expiration of the period of bid validity, the successful Bidder shall be notified in writing

by letter or by email. Within 15 days of receipt of the notification of award, the successful Bidder

shall execute a contract with ReBIT in accordance with the terms and conditions of this RFP. For

execution of contract agreement promptly after the successful Bidder is notified, the Bidder will

be sent the contract incorporating all agreements between the parties. The supplier should

acknowledge and unconditionally accept, sign, mention the date and return the contract within 5

days from the date of issue of contract.

The selected Bidder at his own expense will register the contract agreement by paying the

appropriate amount of stamp duty. The first page of the contract agreement shall be on a stamp

paper of appropriate value. The stamp paper and franking needs to be done in Mumbai only.

Within 15 days of receipt of the notification of award, the successful Bidder shall at his/her own

expense submit to ReBIT unconditional, irrevocable and continuing Performance Bank Guarantee

from a scheduled bank, in the format prescribed in this RFP, payable on demand, for the due

performance and fulfilment of the contract by the Bidder. Notwithstanding and without prejudice

to any rights whatsoever of ReBIT under the contract in the matter, the proceeds of the

Performance Bank Guarantee shall be payable to ReBIT as compensation for any loss (including

loss of opportunity, time, or cost, etc.) resulting from the Bidder’s failure to comply with its

obligations under the contract.

9. Performance Bank Guarantee

The successful Bidder shall provide a Performance Bank Guarantee for 10% of the Total Cost of

the Project as arrived at Annexure I for a period of 3 years within 15 days from the date of

notification of award in the format as provided in Annexure N with a claim period of 3 months

and such other extended period as ReBIT may decide based on performance of the Bidder and

project obligations. The PBG should be provided from any scheduled Commercial Bank only.

If the Performance bank guarantee is not submitted within the stipulated time, ReBIT reserves the

right to cancel the order / contract and the earnest money deposit shall be forfeited from the

successful Bidder.

ReBIT reserves the right to cancel the order and/or initiate the process for invocation of

Performance Bank Guarantee (PBG) in the event of one or more of the following circumstances:

• Breach by the tenderers of any of the terms and conditions of the tender;

• If the Vendor goes into liquidation voluntarily or otherwise;

• Exceptionally long, delay in supply / execution of the project, without any satisfactory

reason.

• Failure of the successful Bidder to agree with the terms and conditions of this RFP shall

constitute sufficient grounds for the annulment of the award, in which event, ReBIT reserves

the right to invoke the Performance Bank Guarantee.

For reasons as specified above, ReBIT shall be entitled to invoke the performance guarantee

without notice or right of demur to the successful Bidder.

In case of any Contract violations penalties have to deducted from the invoices payments.

Otherwise the penalty amount will be adjusted from PBGs.

ReBIT reserves the right to recover any dues payable by the selected Bidder from any amount

outstanding to the credit of the selected Bidder, including the pending bills and/or invoking

Performance Guarantee, if any. Any amount pending for payment due to non-achieving of

milestone/s set under the agreement or any other reason solely attributable to the successful

Bidder should be included in the pending bills / remaining amount of the contract value.

All incidental charges whatsoever such as premium, commission, etc. with respect to the

Performance Bank Guarantee shall be borne by the Bidder.

If the project implementation / go-live is delayed, the Performance Bank Guarantee shall be

extended by the Bidder for such additional duration.


ReBIT/2020 / CPO / 023

Confidential of 65

The Performance Bank Guarantee may be discharged / returned by ReBIT upon being satisfied

that there has been due performance of the obligations of the Bidder under the contract. No

interest shall be payable on the Performance Bank Guarantee.

10. Rejection of Bid

ReBIT reserves the right to accept or reject any Bid in part or in full or to cancel the RFP process

and reject all Bids at any time prior to contract award, without incurring any liability to the affected

Bidder or Bidders or any obligation to inform the affected Bidder or Bidders of the grounds for the

ReBIT’s action

ReBIT reserves the right to disqualify the Bidder/(s), if Bidder/(s) have not completed any project

successfully in ReBIT in stipulated time i.e. Supply, Installation, Setup, Implementation etc in the

past or having poor performance record.

11. Payment Terms and Milestone

ReBIT shall endeavour to make all payments for the products / services delivered to it, based on

completed milestones mentioned at 5.6, within a period of 45 days from the date of acceptance

of invoice by ReBIT.

Bidder should be willing to accept payment through Electronic Payment System (RTGS or NEFT).

Any delay in achievement of milestones/ deliverables/ activities from Bidder shall automatically

result in delay of corresponding payment from ReBIT

Any objection/ dispute to the amounts invoiced in the bill shall be raised by REBIT within

reasonable time from the date of receipt of the invoice. Upon settlement of disputes with respect

to any invoice(s)

Any objection/ dispute to the amounts invoiced in the bill shall be raised by ReBIT within

reasonable time from the date of receipt of the invoice. Upon settlement of disputes with respect

to any disputed invoice(s), ReBIT will make payment within thirty (45) working days of the

settlement of such disputes.

Terms of payment indicated in the Contract that will be issued by ReBIT to the selected Bidder will

be final and binding on the Bidder and no interest will be payable by the ReBIT on outstanding

amounts under any circumstances. If there are any clauses in the Invoice contrary to the terms of

the Contract, the Bidder should give a declaration on the face of the Invoice or by a separate letter

explicitly stating as follows “Clauses, if any contained in the Invoice which are contrary to the

terms contained in the Contract will not hold good and the Invoice would be governed by the

terms contained in the Contract concluded between ReBIT and the Bidder”. Bidder should ensure

that the project should not suffer for this reason.

12. Taxes and Duties

The Bidder shall solely be responsible for all payments (including any statutory payments) to its

employees and shall ensure that at no time shall its employees, personnel or agents hold

themselves out as employees or agents of ReBIT, nor seek to be treated as employees of ReBIT for

any purpose, including claims of entitlement to fringe benefits provided by ReBIT, or for any kind

of income or benefits. The Bidder alone shall file all applicable tax returns for all its personnel

assigned hereunder in a manner consistent with its status as an independent contractor of services

and the Bidder will make all required payments and deposits of taxes in a timely manner.

The amount payable by ReBIT to Bidder shall be inclusive of all costs such as insurance, taxes

(GST, as per the rates applicable), transportation, installation, that may be levied, imposed,

charged or incurred and REBIT shall pay the due under this RFP and subsequent agreement after

deducting any tax deductible at source (“TDS”) and GST-TDS* as applicable.

* As per GST Notification No.33/2017 read with Notification No. 50/2018, ReBIT being a 100%

subsidiary of Reserve Bank of India would be required to deduct TDS under the GST regime.

Therefore, ReBIT would be required to deduct additional TDS as under:

Nature of Supply Name of

GST

Rate of GST –

TDS

Location of service provider and place of supply is in CGST 1%


ReBIT/2020 / CPO / 023

Confidential of 65

Maharashtra SGST 1%

Location of the service provider and place of supply are

outside Maharashtra

IGST 2%

ReBIT agrees to file GST TDS returns for the amount deducted as TDS under GST laws.

The Bidder will need to provide the details for the GST deposited with the authorities for the GST

component to be paid off by ReBIT.

The Bidder will need to provide the details for the tax rates as considered in the pricing. This will

be used for subsequent tax changes. REBIT shall pay each undisputed invoice raised in accordance

with this RFP and subsequent agreement, after its receipt unless otherwise mutually agreed in

writing, provided that such invoice is dated after such amounts have become due and payable

under this RFP and subsequent agreement provided that such invoice is dated after such fees have

become due and payable under this RFP and subsequent agreement.

Any variation (upward) in Government levies/ GST (as per the rates applicable) which has been

included as part of the price will be borne by ReBIT. Any variation (downward) in Government

levies/ GST (as per the rates applicable) which has been included as part of the price, the benefit

will be passed to the ReBIT and adjusted in the payment milestones. If the Bidder makes any

conditional or vague offers, without conforming to these guidelines, ReBIT will treat the prices

quoted as not in conformity with these guidelines and proceed accordingly.

If ReBIT has to pay taxes for any of the items or supplies made in terms hereof by the Bidder, for

any reason including the delay or failure or inability of the Bidder to make payment for the same,

ReBIT has to be reimbursed such amounts paid, on being intimated to the Bidder along with the

documentary evidence. If the Bidder fails to reimburse the amount within a fortnight, ReBIT shall

adjust the amount out of the payments due to the Bidder from REBIT along with the interest

calculated as per the rate prevailing at the time of actual payment

The Bidder shall be liable to pay all applicable corporate taxes and income tax that shall be levied

according to the laws and regulations applicable from time to time in India.

Wherever the laws and regulations require deduction of such taxes at the source of payment,

Purchaser shall effect such deductions from the payment due to the Bidder. The remittance of

amounts so deducted and issuance of certificate for such deductions shall be made by Purchaser

as per the laws and regulations in force. Nothing in the Contract shall relieve the Bidder from his

responsibility to pay any tax that may be levied in India on income and profits made by the Bidder

in respect of this Contract.

13. OEM Authorization

It will be the sole responsibility of the Bidder to get the proposed technical solution vetted by the

OEM as part of the response, if he is not the OEM; and submit a copy of the same to ReBIT

confirming their partnership regarding the implementation of the project. The Bidder should

collaborate with the OEM at all stages of the Solution implementation to the satisfaction of the

ReBIT. The Bidder needs to adhere to the project timelines at all costs irrespective of any constraint

being faced by the OEM. The bidder will be responsible for any loss, damage, late-payment,

penalty arising out of non-fulfilment of obligations by OEM.

In case the successful Bidder is not ready to provide support during the warranty/AMC period, if

support is provided by OEM directly or through their authorized partners for the remaining period

of warranty/AMC, ReBIT will not pay additional cost to OEM/Authorised partners. Bidders should

ensure that the OEM authorisation letter shared by them covers all the points mentioned in this

section

14. Patent Rights

Bidder shall own complete responsibilities of Patent and infringement of copyright, trademarks

etc. ReBIT shall be free from all such claims and notices. If any such instances are occurred ReBIT

will disqualify the Bidder or terminate the contract.

In the event of any claim asserted by a third party of infringement of copyright, patent, trademark,

industrial design rights, etc. arising from the use of the procurement of this RFP or any

part/component thereof in India, the Bidder shall act expeditiously to extinguish such claim. If

the Supplier fails to comply and ReBIT is required to pay compensation to a third party resulting


ReBIT/2020 / CPO / 023

Confidential of 65

from such infringement, the Supplier shall be responsible for the compensation including all

expenses, court costs and lawyer fees. ReBIT will give notice to the Supplier of such claim, if it is

made, without delay.

15. Termination

i. ReBIT reserve the right to terminate the contract in case of any the following (but not limiting

to):

• Deficiency in the Product / Solution / Service in terms of, uptime (basis the SLA

reports), reporting, enhancements (updates and Upgrades are not received as per

the frequency defined in Technical Specification sheet, escalations are required to

be done frequently, etc.

• Deficiency in the Multifactor Authentication Solution & Operation service in terms

of performance based on daily operations, security investigation, uptime,

reporting, enhancements, alerting, notifications, escalations, etc.

• Non-availability of bidder’s resources during the 24x7x365 days of service.

• Failure to provide reporting services like daily reports, weekly report, monthly

reports, half yearly reports, annual reports highlighting limitations, pending

approvals, improvement, license expiry, major & critical incident detection, etc.

• Implementing / impacting changes to the solution without necessary approvals

from ReBIT.

• Breach of terms & conditions in NDA, leakage of ReBIT’s Intellectual Property due

to misconfiguration, wrong configuration, no-action or limited action on available

threat Intelligence or threat advisories.

• Deletion, modification, tampering of ReBIT’s logs.

• Non-adhering to regulatory compliance for ReBIT data.

• Leakage of any confidential information.

• Not being transparent or hiding the truth or misrepresenting facts on issues

relating to management and operation, security incidents to ReBIT.

• In case of the bidder going insolvent, getting blacklisted, involvement in fraud, etc.

ii. ReBIT reserves the right to cancel the contract of the selected Bidder and recover

expenditure incurred by ReBIT if the progress regarding execution of the contract, made by

the selected Bidder is found to be unsatisfactory for any reason. After the award of the

contract, if the selected Bidder does not perform satisfactorily or delays execution of the

contract, ReBIT reserves the right to get the balance contract executed by another party of

its choice by giving one months’ notice for the same. In this event, the selected Bidder is

bound to make good the additional expenditure, which ReBIT may have to incur to carry out

bidding process for the execution of the balance of the contract. This clause will survive

even where, for any reason, the contract is cancelled. ReBIT reserves the right to recover any

dues payable to the selected Bidder from any amount outstanding to the credit of the

selected Bidder, including the pending bills and/or invoking Bank Guarantee, if any, under

the contract or any other contract/order.

iii. On termination of the project/Contract, the Bidder commits to provide all necessary support

in transitioning the project to new incumbent identified by ReBIT, handover all

documentations, provide team support during the handover period and ensure a seamless

and smooth transition.

iv. ReBIT reserves its right to cancel the Purchase Order / Contract at any time by assigning

appropriate reasons and recover expenditure incurred by ReBIT in addition to recovery of

liquidated damages in terms of the contract, in the event of one or more of the following

conditions:

a. Delay in commencement of the project beyond two weeks after the assignment order

or beyond the date given by ReBIT in the purchase order.

b. Delay in completion of Acquired Services.

c. Serious discrepancies noted in the inspection.

d. Breaches in the terms and conditions of the Order.

v. ReBIT reserves the right to cancel the contract placed on the selected Bidder and recover

expenditure incurred by ReBIT on the following circumstances:

a. Non submission of acceptance of order within 7 days of order / notification of award.

b. Failure of the successful Bidder to accept the contract and furnish the Performance

Bank Guarantee within 15 days from notification of award.

c. Delay in delivery beyond the specified period.


ReBIT/2020 / CPO / 023

Confidential of 65

d. Delay in completing implementation/customization and acceptance tests/ checks

beyond the specified periods.

e. Serious discrepancy in functionality to be provided or the performance levels which

have an impact on the functioning of the solution.

f. Excessive delay in execution of order placed by ReBIT.

g. The selected Bidder commits a breach of any of the terms and conditions of the bid.

h. The Bidder goes in to liquidation voluntarily or otherwise.

i. The progress made by the selected Bidder is found to be unsatisfactory. Non-

satisfactory performance of the selected Bidder during implementation and

operation. The progress regarding the execution of the order accepted by the

selected Bidder is found to be unsatisfactory or delay in execution of the contract,

ReBIT reserves the right to get the balance contract executed by another party of its

choice by giving one month’s notice for the same. In this event, the selected Bidder

is bound to make good the additional expenditure, which ReBIT may have to incur in

executing the balance contract. This clause is applicable, if for any reason, the

contract is cancelled.

j. An act of omission by the Bidder, its employees, its agents, or employees of the

consortium in the performance of the services provided by this contract.

k. Failure to integrate/implement the Project as per the requirements of ReBIT as stated

in this RFP.

l. Material discrepancies in the Deliverables and Services noted in the implementation

of the Project. ReBIT reserves the right to procure the same or similar product from

the alternate sources at the risk, cost and responsibility of the selected Bidder.

m. The average uptime of the “working time” in 3 (three) consecutive months of all

together is less than 90%.

n. Selected Bidder is found to be indulging in frauds.

o. ReBIT suffers a reputation loss on account of any activity of successful Bidder and

penalty is levied by regulatory authority.

p. In the event of sub contract or assignment contrary to the terms of agreement.

vi. ReBIT shall serve the notice of termination to the Bidder at least 30 days prior, of its intention

to terminate services.

vii. ReBIT reserves the right to recover any dues payable by the selected Bidder from any amount

outstanding to the credit of the selected Bidder, including the pending bills and security

deposit, if any, under this contract.

viii. In addition to the cancellation of purchase order / Contract, ReBIT reserves its right to invoke

the Performance Bank Guarantee or foreclose the Security Deposit given by the Bidder

towards non-performance/non-compliance of the terms and conditions of the contract, to

appropriate towards damages.

ix. In addition to the cancellation of contract, ReBIT reserves the right to appropriate the

damages through encashment of Bid Security /Performance Guarantee given by the Bidder.

ReBIT reserves right to exit at any time after giving notice period of one month during the

contract period.

x. Additionally, the selected bidder will also refund payment received on account of ReBIT RSB

project without any time delay.

xi. If the Termination is on account of failure of the Bidder to perform the obligations under

this RFP contract, ReBIT shall have the right to invoke the Performance Bank Guarantee(s)

given by the selected Bidder.

16. Sub-Contracting

The Bidder shall not subcontract or permit anyone other than its personnel and the parties enlisted

in the response to this RFP, to perform any of the work, service or other performance required of

the Bidder under the contract without the prior written consent of ReBIT.

17. Service Level Agreement (SLA)

17.1 Purpose and Objective of SLA

ReBIT intends to enter into a Service Level Agreement (SLA) with the successful Bidder in order to

provide complete utility of the service that could be provided to ReBIT under this RFP. The SLA

shall be included in the contract agreement as mentioned in the document and identifies the

expectations of ReBIT and defines the Scope and Boundaries for the successful Bidder to provide


ReBIT/2020 / CPO / 023

Confidential of 65

maximum “Business Utility”.

The purpose of this Service Level Requirements/Agreement (hereinafter referred to as SLA) is to

clearly define the levels of service which shall be provided by the Bidder to ReBIT for the duration

of this contract period of the Project.

This SLA provides for minimum level of services required as per contractual obligations based on

performance indicators and measurements thereof. The Bidder shall ensure provisioning of all

required services, while monitoring the performance of the same, to effectively comply with the

performance levels mentioned in the RFP.

The Bidder should provide SLA monitoring tool/system which will be used for monitoring SLA

based on the SLA defined.

The Bidder has to faciliatate all the reports pertaining to SLA Review process. All the reports must

be made available to ReBIT, as and when the report is generated or as and when asked by ReBIT.

Timelines specified at Project Milestones shall form the Service Levels for delivery of Services

specified there-in.

The maximum limit on the penalties including liquidated damages during the period of contract

shall be 10% of the total contract value.

17.2 Definitions

For purposes of SLA, the definitions and terms as specified along with the following terms shall

have the meanings set forth below:

1. Service Levels are calculated based on the “Business Utility” of the solution, which is

described as the ratio of “System Available for Actual Business Hours” to the “Scheduled

System Availability for Business”.

Where BU = Business Utility, SBOH

= Scheduled Business Operation Hours, SBDT

= Business

Downtime

2. The “Scheduled Business Operation Hours” for a given time frame are calculated after

deducting the planned downtime which can be taken on the system only with prior notice

to REBIT and with mutual consent of REBIT and the Bidder.

3. “Business Downtime” is the actual duration for which the system was not able to service

ReBIT or the Clients of ReBIT, due to System or Infrastructure failure as defined by ReBIT

and agreed by the Bidder. The "Business Downtime" would be calculated on daily basis and

for all performance appraisals, the daily downtime would form part of core measurement

for assessment/ escalation/ penalty, etc."

4. The “Working Hours” would be from 9:30 AM to 6:30 PM from Monday to Friday. Further,

ReBIT expects the Bidder to recognize the fact that ReBIT might work in extended hours to

provide the expected customer service as well as for statutory reporting.

5. “Business Operation Hours” shall be “One Hour” prior to the start of “Working Hours” and

would end “One Hour” after “Working Hours”. “Business Operation Hours” for Data Centre

and Disaster Recovery Centre would be same.

Any issue could be classified under the following four categories:

Level 1: The identified issue has a material business impact (Show Stopper) and needs to be

resolved immediately. This level would typically correspond to issues that result into disruption

of services to ReBIT. It is expected that the Bidder provides an immediate solution/ work around

for “Show Stopper” issues so that ReBIT can continue to function normally and then register the

issue on priority by conducting a “Root Cause Analysis”.

SBOH - SBDT

BU (%) = ----------------- x 100

SBOH


ReBIT/2020 / CPO / 023

Confidential of 65

Level 2: The identified issue has a significant business impact and needs to be taken up on top

priority. This level would typically correspond to issues that result into disruption of one or more

critical services to all the ReBIT, Regulated entity offices and external institutions having an access.

Level 3: The identified issue has normal impact on the Business and needs to be addressed at the

earliest. This level would typically correspond to issues which result into disruption of one or more

services to one or more but not all ReBIT, Regulated entity offices and external institutions having

an access.

Level 4: The identified issue has almost no impact in terms of Business. However, issue needs the

attention of the Bidder and shall be fixed on lesser priority.

17.3 Service level Requirements

The Bidder is expected to take care of the systems by covering them under the contract period

Sr. No. Criticality Response Time (Acknowledgement

of the problem)

Time to Recovery (TTR) /

Resolution Time

1 Level 1 1 Hour 8 Hours

2 Level 2 1 Hour 1 Working Day

3 Level 3 2 Hours 2 Working Day

4 Level 4 4 Hours 3 Working Days

TTR shall be computed as total downtime per month. The TTR values given in the above table,

therefore, define the maximum acceptable downtime in the specified time and conditions. A

failure that does not result into a level 1 or level 2 incident considered as level 3 and level 4, is

still required to be resolved by the Bidder in the duration as mentioned in the above table.

Service Degradation is a scenario where the service quality degrades for a continual period by

more than 20% of expectation at any point (measured in terms of response time).

17.4 Performance Tracking and Reporting

ReBIT requires the Bidder to provide reports on “Business Downtime” and a log of all issues that

have been raised and Closed / Pending Closure by the Bidder. The frequency of the report would

be Monthly, Quarterly and Yearly. If no issues, a nil statement may be provided.

The solution related minimum service expectation as a percentage of “Business Utility” is of

99.99% to be calculated on monthly basis.

17.5 Problem Management and Escalation Procedures

The Bidder is expected to provide an interface for logging issues. It should have an audit trail and

updating functionalities and preferably have a role-based access for the users. ReBIT should be

able to retrieve the details of any issue logged and get the complete history of the issue including

the enterer, date of entry, date and details of the solution, re‐opened date with remarks, etc.

17.6 Penalties

Business Utility and Business Downtime would be the key considerations for determining the

“Penalties” that would be levied on the Bidder for “Non‐Adherence” to the SLA for the Services

offered.

The inability of the Bidder to provide the requirements as per the scope or to meet the deadlines

as specified would be treated as breach of contract and invoke the Penalty Clause.

The applicable “Penalties” would be the same irrespective of the root causes.


ReBIT/2020 / CPO / 023

Confidential of 65

Criticality -→

Elapsed Time of unavailability

for end users Penalties in (INR)

Up to 8 hours NILL

Up to 24 hrs 2.5% of the total support cost of a year

Greater than 24 hours 5% of the total support cost of a year

The Pay-outs shall be on a quarterly basis and penalty shall be deducted from the next quarterly

pay-out (support cost).

18. Liquidated Damages (LD)

If Successful Bidder fails to deliver any or all of the Service(s) / Systems or perform the Services

within the time period(s) specified in the RFP/Contract / Agreement, ReBIT shall, without prejudice

to its other rights and remedies under and in accordance with the RFP/Contract / Agreement, levy

Liquidated Damages (LD) from payments, which are due to the Successful Bidder. For calculation

of LD:

i. In case of delay by the Bidder in any stage of the project milestone, the financial Penalty as

per the ReBIT’s discretion will be imposed on the Bidder at 1% of the total contract value per

week of delay, subject to the maximum of 10% of the total contract value as per the agreement

between ReBIT and the successful Bidder.

ii. In addition to the LD, ReBIT reserves the right to terminate the contract if the delay is beyond

4 weeks.

iii. ReBIT reserves its right to recover these amounts by any mode such as adjusting from any

payments to be made by ReBIT to the company.

iv. Part of month will be treated as a month for this purpose.

v. However, ReBIT may, at its discretion, waive the liquidated damages in case the delay cannot

be attributed to the Bidder.

vi. ReBIT will deduct the amount of liquidated damages from the payment due of the same project

from the Successful Bidder or invoke the Bank Guarantee. ReBIT may also withhold the amount

to be recovered from the payment due from other projects held by the same Bidder.

vii. Any such recovery or liquidated damages shall not in any way relieve the successful Bidder

from any of its obligations to complete the works / service(s) or from any other obligations

and liabilities under the Contract/Agreement/Purchase Order.

viii. ReBIT reserves the right to condone the delay, if it is not attributable to the successful Bidder.

If the Bidder fails to complete the due performance of the contract in accordance with the

specification including SLAs and conditions of the offer document, ReBIT reserves the right either

to cancel the order or to recover a suitable amount as deemed reasonable as Penalty / Liquidated

Damage for non-performance.

19. Adherence of Cyber Security Policy

Bidders are liable for not meeting the security standards or desired security aspects of all the ICT

resources as per ReBIT’s IT/Information Security / Cyber Security Policy. The salient aspects of

security that the vendor needs to follow will be shared by ReBIT. Bidder should ensure Data

Security and protection of facilities/application managed by them.

The deputed persons should aware about ReBIT’s IT/IS/Cyber security policy and must maintain

the utmost secrecy & confidentiality of the ReBIT’s data including process performed at ReBIT

premises. At any time, if it comes to the notice of ReBIT that data has been compromised /

disclosed/ misused/misappropriated due to any gap in compliance to the above-mentioned

policies then ReBIT would take suitable action as deemed fit and selected vendor would fully be

required to compensate ReBIT of loss incurred by ReBIT.

Bidder must agree and provide undertaking not to disclose any ReBIT information and will

maintain confidentiality of ReBIT information as per policy of ReBIT and will sign “Non-Disclosure

Agreement” document provided by ReBIT.


ReBIT/2020 / CPO / 023

Confidential of 65

The legal and regulatory requirements, including data protection, intellectual property rights,

copy right, all the relevant regulations for sub-contracting; including the controls that need to be

implemented shall be included in the supplier agreement.

All information resources (online/in-person) of the vendors and its partners shall be made

accessible to ReBIT as and when sought. Credentials of vendor/third party personnel accessing

and managing the ReBIT’s critical assets shall be maintained and shall be accordance with ReBIT’s

policy.

ReBIT shall evaluate, assess, approve, review, control and monitor the risks and materiality of

vendor/outsourcing activities and Bidder shall ensure to support baseline system security

configuration standards. ReBIT shall also conduct effective due diligence, oversight and

management of third-party vendor’s/service providers & partners.

vendor security risk assessment will be carried out for the selected partner as detailed in Section

24 below.

Appropriate management and assurance on security risks in outsourcing and partner

arrangements shall be ensured.

20. Confidentiality

The Bidder must undertake that they shall hold in trust any Information received by them, under

the Contract/Agreement, and the strictest of confidence shall be maintained in respect of such

Information. The Bidder has also to agree:

i. To maintain and use the Information only for the purposes of the Contract/Agreement and

only as permitted by ReBIT

ii. To only make copies as specifically authorized by the prior written consent of ReBIT and with

the same confidential or proprietary notices as may be printed or displayed on the original;

iii. To restrict access and disclosure of Information to such of their employees, agents, strictly

on a “need to know” basis, to maintain confidentiality of the Information disclosed to them in

accordance with this Clause and

iv. To treat all Information as Confidential Information.

v. The Selected Bidder shall be required to sign a Non-Disclosure Agreement with ReBIT as per

prescribed format provided in Annexure O within 15 days of issuing the purchase

order/notification of award.

21. Limitation of liability

Neither party shall, in any event, regardless of the form of claim, be liable for any indirect, special,

punitive, exemplary, speculative or consequential damages, including, but not limited to any loss

of data, business interruption, and loss of income or profits, irrespective of whether it had an

advance notice of the possibility of any such damages. Subject to the above and notwithstanding

anything to the contrary elsewhere contained herein, the maximum liability, of selected Bidder

(vendor) and purchaser (ReBIT) shall be, regardless of the form of claim, restricted to the total of

bill of material received by vendor from ReBIT for the event that gave rise to such liability, as of

the date such liability arose, during contract period.

Limitation of liability will not be applicable to any legal injuries suffered by ReBIT due to the Service

Provider in following scenarios:

(a) fraud, wilful misconduct or gross negligence;

(b) breach of intellectual property with respect to third party claims; and

(c) breach of confidentiality, cybersecurity breach or data losses

22. Indemnification

i. Bidder shall indemnify, protect and save ReBIT and hold ReBIT harmless from and against all

claims, losses, costs, damages, expenses, action suits and other proceedings, (including

reasonable attorney fees), relating to or resulting directly or indirectly from

a. an act or omission of the Bidder, its employees, its agents, or employees of the

consortium in the performance of the services provided by the Bidder,

b. breach of any of the terms of this RFP or breach of any representation or warranty by the

Bidder


ReBIT/2020 / CPO / 023

Confidential of 65

c. Use of the deliverables and or services provided by the Bidder,

d. Infringement of any patent trademarks copyrights etc. or such other statutory

infringements in respect of all components provided to fulfil the scope of this project.

Bidder shall further indemnify ReBIT against any loss or damage to ReBIT’s premises or

property, ReBIT’s data, direct financial loss, loss of life, etc., due to the acts of the Bidder’s

employees or representatives. The Bidder shall further indemnify ReBIT against any loss

or damage arising out of loss of data, claims of infringement of third- party copyright,

patents, or other intellectual property, and third-party claims on ReBIT for malfunctioning

of the equipment or software or deliverables at all points of time, provided however,

i. ReBIT notifies the Bidder in writing in a reasonable time frame on being aware of

such claim,

ii. The Bidder has sole control of defence and all related settlement negotiations,

iii. ReBIT provides the Bidder with the assistance, information and authority as it

deems fit to perform the above.

ii. It is clarified that the Bidder shall in no event enter into a settlement, compromise or makes

any statement (including failure to take appropriate steps) that may be detrimental to the

ReBIT’s (and/or its customers, users and service providers) rights, interest and reputation.

iii. Bidder shall be responsible for any loss of data, loss of life, etc., due to acts of Bidder’s

representatives, and not just arising out of gross negligence or misconduct, etc., as such

liabilities pose significant risk.

iv. Bidder should take full responsibility for its and its employee’s actions. Further, since the

ReBIT’s data could be integrated / used under Bidder provided software, the Bidder should be

responsible for loss/compromise or damage to ReBIT’s data and for causing reputation risk

to ReBIT.

v. The Bidders should indemnify ReBIT (including its employees, directors or representatives)

from and against claims, losses, liabilities, penalties, fines and suits arising from:

a. IP infringement under any laws including Copyrights Act 1957 & IT Act 2000 and such

other statutory acts and amendments thereto.

b. Negligence and misconduct of the Bidder, its employees, and agents.

c. Breach of any terms of RFP, Representation or Warranty.

d. Act or omission in performance of service.

e. Loss of data due to any of the reasons mentioned above.

f. Non-compliance of the Bidder with Laws/Governmental /regulatory Requirements.

vi. In the event that ReBIT is called as a defendant for IPR infringement of patent, trademark or

industrial design rights arising from use of any of the components of the supplied solution,

the Bidder on its own expense will undertake to defend ReBIT.

vii. It will be the Bidder’s responsibility to rapidly do away with third-party claims. The Bidder will

also pay any compensation arising from the infringement claims and ReBIT will in no manner

be responsible for such payments. In addition, the Bidder will bear all the related expenses

and legal fees.

viii. On its part, ReBIT will immediately relay to the Bidder any such claims and offer assistance

within reasonable limits to rid the claim.

ix. Once the components delivered at ReBIT premises, The Bidder must undertake to indemnify

that all the components delivered are free of defects, are brand new and original. If at some

stage it is discovered that the components do not meet these criteria, ReBIT has the right to

cancel the order and the Bidder will have to refund the total amount received from ReBIT along

with the interest and separate penalties. Similar conditions apply to software; as well the

system software must be licensed and original.

x. The Bidder claims and represents that it has obtained appropriate rights to provide the

Deliverables and Services upon the terms and conditions contained in this RFP.

a. The Bidder shall be responsible at its own cost for obtaining all necessary authorizations

and consents from third party licensors of Software used by Bidder in performing its

obligations under this Project.

b. If a third party’s claim endangers or disrupts ReBIT’s use of the Deliverables, Bidder shall

at no further expense, charge, fee or cost to ReBIT, obtain a license so that ReBIT may

continue use of the Deliverables in accordance with the terms of this RFP.

c. Bidder shall indemnify and keep fully and effectively indemnified ReBIT from all legal

actions, claims, or damages from third parties arising out of use of software, designs or

processes used by Bidder or his subcontractors or in respect of any other services

rendered under this RFP.


ReBIT/2020 / CPO / 023

Confidential of 65

23. Responsibility for Completeness

Any supplies and services, which might not have been specifically mentioned in this tender but,

are necessary for the installation, Configuration, testing, commissioning, performance or

completeness of the order, shall be provided / made available as per the time schedule for smooth

and efficient operation and maintenance of the system under Indian conditions.

The Bidder shall be responsible for any discrepancies, errors and omissions in the technical details

submitted by him/them, irrespective of whether these have been approved, reviewed or otherwise,

accepted by ReBIT or not. The Bidder shall take all corrective measures arising out of

discrepancies, errors and omissions in drawing and other information as mentioned above within

the time schedule and without extra cost to ReBIT.

24. Vendor Security Risk Assessment

i. General Security Requirements

• Vendor / Bidder should have the security controls in place to protect sensitive and/or

confidential information shared with the vendor.

• Ensure that any agent, including a vendor or subcontractor, to whom ReBIT provides access

to information systems, agrees to implement reasonable and appropriate safeguards to

ensure the confidentiality, integrity, and availability of the information systems.

• Vendors will not copy any ReBIT’s data obtained while performing services under this RFP to

any media, including hard drives, flash drives, or other electronic device, other than as

expressly approved by ReBIT.

• All personnel who will be part of this engagement deployed at ReBIT’s premises will need to

adhere ReBIT’s security policy.

• All personnel who will be part of this engagement will need to sign NDA with ReBIT.

• Vendor / Bidder should carry out Background checks which includes Address, Education,

past employment and criminal checks for all personnel that will be deployed at ReBIT for the

implementation.

• Vendor shall disclose the origin of all software components used in the product including

any open source or 3rd party licensed components.

ii. Security for Support & Maintenance

• Vendor should follow all the process defined by ReBIT like Incident, Change, Release and

Patch Management.

• Configuration items such as computers and other devices, software contracts and licenses,

third party tools and business services which are related to this project should be disclosed.

• All user and technical access will be granted as per the Role Matrix approved by ReBIT. All

access will be reviewed as per defined frequency and during control points e.g. when a team-

members leave team or organization.

• The security requirements for vendors mentioned in these sections will be evaluated during

the Vendor Security Risk Assessment. This assessment will be conducted on periodic basis.

25. Force Majeure

The Bidder or REBIT shall not be responsible for delays or non-performance of any or all

contractual obligations, caused by war, revolution, insurrection, civil commotion, riots,

mobilizations, strikes, blockade, acts of God, plague or other epidemics, fire, flood, obstructions

of navigation by ice of Port of dispatch, acts of government or public enemy or any other event

beyond the control of either party, which directly, materially and adversely affect the performance

of any or all such contractual obligations.

If a Force Majeure situation arises, the Bidder shall promptly notify REBIT in writing of such

conditions and any change thereof. Unless otherwise directed by ReBIT in writing, the Bidder shall

continue to perform his obligations under the contract as far as possible and shall seek all means

for performance of all other obligations, not prevented by the Force Majeure event.

If the duration of delay due to force majeure continues beyond a period of three months, vendor

and ReBIT shall hold discussion to find a solution. However, notwithstanding the above, the

decision of ReBIT would be final and binding on the vendor.


ReBIT/2020 / CPO / 023

Confidential of 65

26. Vicarious Liability

The Bidder shall be the principal employer of the employees engaged by the Bidder and shall be

vicariously liable for all the acts, deeds or things, whether the same is within the scope of power

or outside the scope of power, vested under the contract. No right of any employment shall accrue

or arise, by virtue of engagement of employees by the Bidder, for any assignment under the

contract. All remuneration, claims, wages dues etc., of such employees of the Bidder shall be paid

by the Bidder alone and the ReBIT shall not have any direct or indirect liability or obligation, to

pay any charges, claims or wages of any of the Bidder’s employees. The Bidder shall agree to hold

the ReBIT, its successors, assigns and administrators fully indemnified, and harmless against loss

or liability, claims, actions or proceedings, if any, that may arise from whatsoever nature caused

to the ReBIT through the action of Bidder’s employees.

27. Non-Payment of items/activities fees

If any of the items/activities as mentioned in the price bid and as mentioned in Commercial Bid

are not taken up by the ReBIT during the course of this assignment, the ReBIT will not pay the

items/activities fees quoted by the Bidder in the Price Bid against such activity/item.

28. Assignment

Neither the contract nor any rights granted under the contract may be sold, leased, assigned, or

otherwise transferred, in whole or in part, by the Bidder, and any such attempted sale, lease,

assignment or otherwise transfer shall be void and of no effect without the advance written

consent of the ReBIT.

29. Non‐Solicitation

The Bidder, during the term of the contract and for a period of one year thereafter shall not without

the express written consent of the ReBIT, directly or indirectly:

Recruit, hire, appoint or engage or attempt to recruit, hire, appoint or engage or discuss

employment with or otherwise utilize the services of any person who has been an employee or

associate or engaged in any capacity, by the ReBIT in rendering services under the contract; or

Induce any person who is / have been an employee or associate of the ReBIT at any time to

terminate his/ her relationship with the ReBIT.

30. No Employer‐Employee Relationship

The Bidder or any of its holding/subsidiary/joint‐venture/ affiliate / group / client companies or

any of their employees / officers / staff / personnel / representatives / agents shall not, under

any circumstances, / be deemed to have any employer‐employee relationship with the ReBIT or

any of its employees /officers / staff / representatives / personnel / agents.

A self-declaration is required from the Bidder as part of the technical bid.

31. Ownership

The RFP and all supporting documentation are the sole property of ReBIT and should NOT be

redistributed without written consent of ReBIT.

Violation of this would be breach of trust and may, inter-alia causes the Bidders to be irrevocably

disqualified.

Forthwith upon expiry or earlier termination of this Contract and at any other time on demand by

ReBIT, the Bidder shall deliver to ReBIT all documents provided by or originating from ReBIT and

all documents produced by or from or for the Bidder in the course of performing the Services,

unless otherwise directed in writing by ReBIT at no additional cost

The Bidder shall not, without the prior written consent of ReBIT, store, copy, distribute or retain

any such documents

The bid proposal and all supporting documentation submitted by the Bidder shall become the

property of ReBIT. Unless ReBIT agrees to the Bidder’s specific requests, in writing, the proposal

and documentation are not to be returned.


ReBIT/2020 / CPO / 023

Confidential of 65

32. Tender/RFP Cancellation

ReBIT reserves the right to cancel the Tender/RFP at any time without assigning any reasons

whatsoever.

33. Publicity

Any publicity by the Bidder in which the name of ReBIT is to be used, will be done only with the

prior written permission of ReBIT.

34. Dispute Resolution

In the event of any dispute, disagreement or differences between the parties relating to the

“Contract or LOI (Letter of Invitation) whichever is issued later”, ReBIT and the vendor shall make

every effort to resolve amicably, by direct informal negotiation.

If after thirty days from the commencement of such informal negotiations, ReBIT and the Vendor

have been unable to resolve amicably a contract dispute, either party may require that the dispute

be referred for resolution by formal arbitration to be conducted in accordance with the Arbitration

and Conciliation Act, 1996 and the venue of arbitration shall be at Mumbai, India.In the event of

failure to resolve the differences through arbitration, either of the parties shall be free to

undertake necessary further legal course with the Courts of Law in Mumbai who shall have

jurisdiction for preventive, interlocutory and other incidental relief applied for by any party under

or in relation to Agreement.

35. Jurisdiction

Notwithstanding anything contained herein above, in case of any dispute, claim and legal action

arising out of this RFP, the parties shall be subject to the jurisdiction of courts at Mumbai,

Maharashtra State, India only.


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure A: Submission Checklist

Submission Checklist for Technical Bid

The Bidder must ensure that the all the required documents as per the RFP are submitted as a part

of the Technical Bid. Failure to provide any of the documents could lead to the disqualification of

the Bidder from the bid. An indicative list of the required documents is provided below. The bidders

shall review and provide any other documents required as per the RFP.

Items

Submitted

(Bidder)

Verified

(REBIT)

Index of all the documents, letters, signed RFP etc. submitted in

response to this document along with page numbers.

Demand Draft /BG towards the Earnest Money Deposit.

A copy of board resolution along with a copy of power of attorney

(POA wherever applicable) showing that the signatory has been

duly authorised to sign the Bid document.

Copy of the RFP,Corrigendum, if any along with all clarifications

released by ReBIT duly stamped and signed on all the pages of the

document for having noted the contents and testifying

conformance to the terms and conditions set out therein. The

proposal should be prepared in English in MS Word / PDF format.

Annexure B: Bid Submission Form

Annexure C: Self-Declaration for Relatives in REBIT

Annexure D: Self-Declaration to comply with Sexual Harassment of

Women at Workplace (Prevention, Prohibition and Redressal) Act,

2013

Annexure F: Bidder’s Details

Annexure G: Specific response with supporting documents in

respect of Eligibility Criteria.

Annexure H : Complaince to Technical Specifications

(Bidders to submit all relevant catalogues duly highlighting the

relevant specifications)

Annexure J: Bidder’s experience.

Annexure K: Manufacturer’s Authorisation Form if the Bidder is not

an OEM.

Annexure L: Proposed team profile

Annexure Q: Proposed project plan


ReBIT/2020 / CPO / 023

Confidential of 65

Items

Submitted

(Bidder)

Verified

(REBIT)

Annexure O: Confidentialy and Non-disclosure agreement

Escalation matrix

Submission Checklist for Commercial Bid

The following documents need to be provided by the Bidder for the Commercial

Commercial Bid Documents

Submitted

(Bidder)

Verified

(ReBIT)

Annexure I: Price Bid


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure B: Bid submission form

[Insert: Location, Date]

To: [insert: Name and Address of ReBIT contact]

Madam/Dear Sir:

We, the undersigned, hereby offer to provide professional services for [insert: Title of services] in

accordance with your Request for Proposal dated [insert: Date] and our Proposal. We are hereby

submitting our Proposal, which includes the Technical Proposal and Financial Proposal

We hereby declare that all the information and statements made in this Proposal are true and we

accept that any misinterpretation contained in it may lead to our disqualification.

We confirm that we have read, understood and hereby accept the Terms of Reference describing

the duties and responsibilities required of us in this RFP, and the stated Terms and Conditions.

We agree to abide by this Proposal for the validity as mentioned in the RFP and our Offer shall

remain binding on us and may be accepted by ReBIT any time before expiry of the offer.

We undertake, if our Proposal is accepted, to start the services within the timelines as mentioned

in the RFP from the Contract signature date.

We fully understand and recognize that ReBIT is not bound to accept this proposal, that we shall

bear all costs associated with its preparation and submission, and that ReBIT will in no case be

responsible or liable for those costs, regardless of the conduct or outcome of the evaluation.

Having examined the Bid Documents including Annexes, the receipt of which is hereby duly

acknowledged, we, the undersigned, offer to supply, deliver, implement and commission ALL the

items mentioned in the ‘Request for Proposal’ and the other schedules of requirements and

services for your ReBIT in conformity with the said Bid Documents in accordance with the schedule

of Prices indicated in the Price Bid and made part of this Bid.

If our Bid is accepted, we undertake to comply with the delivery schedule as mentioned in the Bid

Document.

We attach hereto the Bid Response as required by the Bid document, which constitutes my/our

bid.

We undertake, if our Bid is accepted, to adhere to the implementation plan put forward in our Bid

Response or such adjusted plan as may subsequently be mutually agreed between us and ReBIT

or its appointed representatives.

If our Bid Response is accepted, we will obtain a performance bank guarantee in the format given

in the Bid Document issued by a scheduled commercial bank in India for a sum mentioned in the

RFP for the due performance of the contract.

This Bid, together with your written acceptance thereof and your notification of award, shall

constitute a binding Contract between us.

We agree that you are not bound to accept the lowest or any Bid Response you may receive. We

also agree that you reserve the right in absolute sense to reject all or any of the goods /products

specified in the Bid Response without assigning any reason whatsoever.

We hereby agree to comply with all the terms and conditions / stipulations as contained in the

RFP and the related addendums, other documents and if required including the changes made to

the original bid documents issued by ReBIT.

ReBIT is not bound by any other extraneous matters or deviations, even if mentioned by us

elsewhere either in our proposal or any deviations sought by us, whether orally or in writing, and


ReBIT/2020 / CPO / 023

Confidential of 65

ReBIT’s decision not to accept any such extraneous conditions and deviations will be final and

binding on us.

It is hereby confirmed that I/We are entitled to act on behalf of our corporation/company

/firm/organization and empowered to sign this document as well as such other documents which

may be required in this connection.

We undertake that in competing for and if the award is made to us, in executing the subject

Contract, we will strictly observe the laws against fraud and corruption in force in India namely

“Prevention of Corruption Act 1988”.

We certify that we have provided all the information requested by ReBIT in the format requested

for.

We also understand that ReBIT has the exclusive right to reject this offer in case ReBIT is of the

opinion that the required information is not provided or is provided in a different format.

We remain,

Yours sincerely,

Authorised Signature [In full and initials]:

Name and Title of Signatory:

Name of Company:

Contact Details:

[Please mark this letter with your company seal]


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure C: Self Declaration Relatives in ReBIT

(On letterhead of the Bidder)

We certify that below mentioned are the complete details of relatives of our employees working

at ReBIT

Sr. No. Relationship with the employee

(Mother/Father/Sister/Brother/Etc.)

Name of

Relative

Designation Department


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure D : Self Declaration Sexual Harassment of Women at

Workplace (Prevention, Prohibition and Redressal) Act, 2013


Strictly Private and Confidential

The Chief Executive Officer

Reserve Bank Information Technology Pvt Ltd. (ReBIT),

502, Building No 1, MindSpace Juinagar,

Nerul, Navi Mumbai – 400706

[Date]

[Salutation]

Sub: Request for Proposal for (Acquired Services/RFP/Etc) with reference number RFP:

ReBIT/2020 / CPO / ____ dated DD Month YYYY.

Further to our proposal, in response to the Request for Proposal for (Acquired Services/RFP/Etc)

with reference number RFP: ReBIT/2020 / CPO /____ dated DD Month YYYY (hereinafter referred

to as “RFP”) issued by Reserve Bank information technology Pvt Ltd (hereinafter referred to as

“REBIT”) we hereby covenant, warrant and confirm as follows:

1. Full compliance with the provisions of the “the sexual harassment of women at workplace

(Prevention, Prohibition and Redressal) Act, 2013”. In case of any complaint of sexual

harassment against any of our employee within the premises of the ReBIT, the complaint will

be filed before the Internal Complaints Committee constituted by the Bidder and the Bidder

shall ensure appropriate action under said Act in respect to the complaint.

2. Any complaint of sexual harassment from any aggrieved employee of the Bidder against

employee of the ReBIT shall be taken cognizance of by the Regional Complaints Committee

constituted by the ReBIT.

3. The Bidder shall be responsible for any monetary compensation that may need to be paid in

case the incident involves the employees of the Bidder, for instance any monetary relief to

ReBIT’s employee, if sexual violence by the employee of the Bidder is proved.

4. The Bidder shall be responsible for educating its employees about prevention of sexual

harassment at workplace and related issues.

5. The Bidder shall provide a complete and updated list of its employees who are deployed within

the ReBIT’s premises.

Yours faithfully,


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure E : Bidders Queries Format

Contact Details

Name of Organization submitting

request (Enter Full Legal Entity

name)

:

Full formal address of the

organization

:

Tel :

Fax :

Email :

Name & position of person submitting request

Name :

Position :

# Page

No

Clause

no.

Existing Clause of the

RFP Query

ReBIT’s

Response


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure F : Bidder’s Details

[The Bidder shall fill in this Form in accordance with the instructions indicated below. No alterations

to its format shall be permitted and no substitutions shall be accepted.]

Date: [insert date (as day, month and year) of Proposal Submission]

1. Bidder’s Legal Name [insert Bidder’s legal name]

2. Bidder’s Country of Registration: [insert Country of registration]

3. Bidder’s Year of Registration: [insert Bidder’s year of registration]

4. Bidder’s Legal Address in Country of

Registration:

[insert Bidder’s legal address in country of

registration]

5. Bidder’s Authorised Representative

Information

Name:

Designation:

Address:

Telephone/Fax numbers:

Email Address:

6. Attached are certified copies of original

documents of firm/ company named in 1:

o Document evidencing the person(s)

duly authorised to commit the Bidder or a

Power of Attorney

7. Details for EMD Refund

a) Account No.

b) Name of account holder

c) Name of Bank

d) IFSC Code

Name and Signature of authorised signatory and Seal of Company


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure G : Minimum Eligibility Criteria

(On Bidders Organisation’s Letterhead)

The Bidder may note that the below criteria is of critical importance and non-adherence of the

Bidders proposed solution to any would lead to disqualification from further bidding process

Sr.

NO

REQUIREMENTS YES /

NO

List of Documents to be Submitted

1 The Bidder must be an entity

registered with the Registrar of

Companies under Companies

Act, 1956/2013

• Copy of the Partnership deed/ Bye Law

/ Certificate of Incorporation issued by

Registrar of Companies along with

Memorandum & Articles of Association

and full address of the registered office.

• GST registration number, as

applicable

2 The Bidder should have a positive

net worth in last three (3)

financial years, i.e. 2017- 18,

2018 – 19, 2019-2020.

Certificate of the Chartered Accountant

shall be provided for the specified period.

3 The bidder should be in net profit

(proft after tax) in the last three

(3) financial years, i.e. 2017- 18,

2018 – 19, 2019-2020.

Audited fianancial statements including

profit and loss statement to be

submitted/ or Certificate of the Chartered

Accountant for the specified period.

4 The bidder should have an

average annual turnover of

atleast Rs 50 lakh in the last

three (3) financial years, i.e.

2017- 18, 2018 – 19, 2019-2020.

5 The bidder should have

implemented 2 or more projects

of size 300 uers or more in each

project of the proposed OEM’s

MFA Solution and should be

performing satisfactorily in the

last 3 years in BFSI sector/ Govt.

sector/Any other sector and

should be live as on 31-12-2017.

The bidder should provide the

required document proof in the

form of purchase order and go-

live certificate from the client.”

A) Bidder to submit documentary

evidence such as satisfaction/ credential

letter from the client clearly stating the

scope of work and project value

OR

Completion letter from the client

indicating the scope of work executed by

the Bidder and the project value

B) Contract / PO Copy as documentary

evidence proving project value

The onus of proving the credential via

documentary evidence is of the Bidder.

In case, the Bidder is unable to provide

any of the above, it will be the ReBIT’s

discretion to evaluate the claim in this

regard.

Note: Only completed assignments will be

evaluated. Projects under implementation

or not completed for any reason will not

be evaluated.


ReBIT/2020 / CPO / 023

Confidential of 65

Sr.

NO

REQUIREMENTS YES /

NO

List of Documents to be Submitted

The name of the Bidder and the proposed

OEM solution needs to be in sync with the

credential letters / contract copies.

Exceptions may be made in case of

divesture, M&A.

6 The Bidder should be OEM or

Original Solution Developer

(OSD) or their authorized

partners or Service Provider (SP)

or System Integrator (SI) of

OEM/OSD in India with

autorisation to setup implement,

support and maintain the

proposed solution in accordance

to this RFP requirements.

i.OEM or its SI can participate

but both cannot participate in

the RFP.

ii.If Bidder is not OEM, the Bidder

can participate through only

one OEM.

iii.OEM can participate through

one bidder only.

Manufacturer authorization Form as

specified in Annexure – K is to be

submitted if the Bidder is not the

OEM/OSD.

If the Bidder is not OEM/OSD, then the

OEM / OSD shall take complete ownership

and accountability for successful

deployment and implementation of the

MFA solution at ReBIT through the

participating Bidder.

7 Bidder should not be currently

blacklisted from any of the

government, semi government

institutions, public/ private

companies etc. in India and

abroad.

Declaration is required on bidder’s letter

head.

8 There is no court case or

insolvency proceedings pending

against the bidder.

Declaration is required on bidder’s letter

head.

If such an action exists and the Bidder

considers that it does not affect its ability

to deliver the requirements as per the

Tender, it shall provide details of the case

/action(s).

• All documentary evidence should be duly signed and stamped by the Bidder.

Note: The Bidder should submit relevant documentation supporting the above eligibility/

qualification criteria. In case of non-compliance with any of the eligibility criteria mentioned above,

the bidder shall be liable to be disqualified without any notice and the bids of the bidder may not

be processed further. Any additional / irrelevant document enclosed with the bid, may lead to

disqualification.

Eligibility criteria mentioned at Sl No 2 to 4 in table above are relaxed for Startups subject to

their meeting of quality and technical specifications. Bidder to note the following:


ReBIT/2020 / CPO / 023

Confidential of 65

i. “Start-up” company should enclose the valid Certificate of Recognition issued by

Department for Promotion of Industry and Internal Trade (DPIIT), (erstwhile Department of

Industrial Policy and Promotion), Ministry of Commerce & Industry, Govt. of India with the

technical bid.

ii. Bidder who solely on its own, fulfils each eligibility criteria condition as per the RFP terms

and conditions and who are having “Start-up” company status, can claim exemption for

eligibility criteria as mentioned above.

Authorized Signature


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure H : Technical Specifications

Sr.

No. Requirement specification

Requir

ement

categor

isation

Total

Marks

Compli

ance

(Y/N)

Detailed response

(please be as elaborate

as possible on how your

solution addresses these

points)

General Functionalities

1

The proposed solution should be

based on number of licensed users

only user, User should be able to

access all MFA integration

application/systems with single

license.

Must

Have -

2

The proposed solution should be able

to provide multifactor authentication

for Windows, Mac, Linux Operating

systems.

Must

Have -

3



for workgroup and active directory

domain system.

Must

Have

4



for SQL, NoSQL, Relational, Object

oriented, Cloud, Network Database

including Microsoft SQL, Oracle

database, Amazon Aurora, Postage

SQL, My SQL, Maria DB

Must

Have -

5

The proposed solution be able to

provide multifactor authentication for

End user system login, End User VPN

Access, Firewall Console Access,

Network Switch’s, Router, Wireless

Controllers, Web Proxy, DLP Console

access including command line Access

wherever is applicable.

Must

Have -

6

The proposed solution should provide

multifactor authentication for emails

End Users Web Access and Outlook.

Must

Have -

7


multifactor authentication for in-

house developed application

Must

Have -

8


multifactor authentication for cloud

service providers like Azure, AWS,

cloud SaaS solutions like Office 365, G

Suite (Google Work Space)

Must

Have -

9


to customise the Time-Based One-

Time Password (TOTP) frequency

Must

Have -

10


multifactor authentication for

virtualization platform (HCI)

Must

Have -

11 The proposed solution should be on

premise deployment.

Must

Have -


ReBIT/2020 / CPO / 023

Confidential of 65

Sr.


Requir

ement

categor

isation

Total

Marks

Compli

ance

(Y/N)

Detailed response




points)

12

The proposed solution should have

single unified administration console

for management, configuration, and

monitoring.

Must

Have -

13


automated audit and access logs,

reports for any access violation.

Must

Have -

14


manageability over web applicaition

console using HTTPS protocol

Must

Have -

15

Solution should have encrypted

communication for all the transaction,

and bidder should provide SSL

certificate wherever required for

encrypted communication.

Good

to Have 10

16 The proposed solution should support

soft token (Android & IOS)

Must

Have -

17

The proposed solution should support

user self-servicing and password

management functionality to allow

users to manage their own

registrations and passwords without

administrator intervention

Must

Have -

18


Hardware Token, Push Notification,

(SMS) Token, Email Token & App

Based Token.

Must

Have -

19


custom reports like based on GEO

location, Access Type, Time

Good

to Have 10

20


strong emergency login mechanism

during solution malfunction

Must

Have -

21


to integrate with LDAP solution for

user authentcation

Must

Have -

22 The proposed solution not store any

users credentials on database.

Must

Have -

23


LDAP, SAML, OATH, RADIUS

authentication

Must

Have -

24


to provide the Pubic IP and Geo

location of the user making the access

request.

Must

Have -

25


to disable/Wipe the token remotely in

case of any security incidents.

Must

Have -

26


inbuilt two factor authentication for

accessing MFA admin console

Must

Have -

27 The proposed solution should support

Thin Client

Good

to Have 10


ReBIT/2020 / CPO / 023

Confidential of 65

Sr.


Requir

ement

categor

isation

Total

Marks

Compli

ance

(Y/N)

Detailed response




points)

28


Adaptive / Risk based authentication

capabilities.

Good

to Have 10

29


hard tokens from other OEM as long

as they are OATH compliant with 5- 7

years of lifetime.

Must

Have -

30


both Open ID and SAML 2.0 natively

and should be able to integrate with

ADFS.

Must

Have -

31


failover to the authentication server at

the DR site when the authentication

server at primary site goes down.

Must

Have -

32


to integrate with third party

applications such as reverse proxy

solution, and PIM solution.

Must

Have -

33

The proposed solution should offer

APIs to either extend or customize the

application.

Good

to Have 10

34


to be deployed in virtual

environments

Must

Have -

35

The Solution should have Inbuilt

Reporting for Secure Access,

Successful/Failed Authentication,

System Reports and other

authentication Reports.

Must

Have -

36

Information for all policies, groups,

and roles should be stored in the

LDAP repository or, alternatively, in a

database.

Must

Have -

37

The system should allow the

administrators to create temporary

policies and apply these policies to

temporary subset of users in order to

validate the settings applied.

Must

Have -

38

The Authentication Mechanism should

provide capabilities to prevent Brute

Force Attacks and should be able to

send alerts to the Admin/Helpdesk in

case of a brute force attack on a user

account.

Must

Have -

Performance, Scalability and Availability

39

Minimum utilization of system

resources on endpoints i.e system

resources used by the agent has to be

below 10% and the memory utilization

should be within 200 MB.

Good

to Have 5


ReBIT/2020 / CPO / 023

Confidential of 65

Sr.


Requir

ement

categor

isation

Total

Marks

Compli

ance

(Y/N)

Detailed response




points)

40

Minimum utilization of network

bandwidth while authentication client

should not utilize bandwidth more

than 1 Mbps.

Good

to Have 5

41

The agent should be dormant/idle

when not performing any

authentication activities.

Must

Have -

42

The server infrastructure should be

horizontally scalable; additional

infrastructure/hardware can be added

to support higher usage and high

availability including DR

Good

to Have 5

43 The proposed solution should provide

embedded secure database.

Must

Have -

Pre-Requisites and Dependencies

44

The proposed solution should not

have any conflict with existing

infrastructure security solutions.

Good

to Have 5

45 The solution agent size should be less

than 100 MB.

Good

to Have 5

Strength of Security

46

Industry grade (AES-256) encryption

should be used for data flow between

Central server and clients

Must

Have -

47

The communication between central

server and client endpoints

irrespective of their location should be

secured with encryption

Must

Have -

Administration

48

Administrator should be able to create

customized dashboard to view

compliance status and history.

Must

Have -

49 Administrator should be able to view

current client status in detail.

Must

Have -

50

Administrator must be able to

generate reports in pdf, csv and excel

format.

Good

to Have 5

51

Administrator should be able to

configure email to receive

weekly/monthly compliance reports

from console automatically.

Must

Have -

52

Administrator must be able to define

role-based access to the various

function areas of the solution and

restrict user role including, but not

limited to, administration, reporting,

event filtering, correlation, and /or

dashboard viewing.

Must

Have -

53


automatec Backup of all policies and

database.

Must

Have -


ReBIT/2020 / CPO / 023

Confidential of 65

Sr.


Requir

ement

categor

isation

Total

Marks

Compli

ance

(Y/N)

Detailed response




points)

54

2FA agent should have anti tamper

password. (requires additional

credential to uninstall)

Must

Have -

Integration

55 Integration with SIEM to analyze and

parse security events/logs generated.

Must

Have -

56

Integration with Active Directory to

import OU & Groups for

administration task and management

and

Must

Have -

57

Solution should Integrate with mail

server to notify successful / failed

login email notification to end users

and administrator.

Good

to Have 5

58

The solution should support

integration with MAM & MDM

solution.

Must

Have -

Token

59

The proposed solution should have 8-

character high contrast LCD display

with pin padded H/W token.

Good

to Have 3

60 The proposed hardware endurance

more than 14,000 clicks

Good

to Have 3

61 The proposed hardware should have

battery life cycle more than 5 years

Good

to Have 3

62


OATH TOTP Compliant RoHS CE FCC

WEEE

Good

to Have 3

63


fingerprint enabled option for

authentication.

Good

to Have 3

Total 100


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure I : Price Bid Format

The Financial Proposal must provide a cost breakdown. Provide separate figures for each

functional grouping or category. The format shown below is suggested for use as a guide in

preparing the Financial Proposal.


Total Cost of the Ownership (TCO) should be calculated in below format. All prices shall be in INR.

S. No. Details Qty Year 1 Year 2 Year 3

Unit

Rate

Total

cost

excl

GST

Total

GST

Unit

Rate

Total

cost

excl

GST

Total

GST

Unit

Rate

Total

cost

excl

GST

Total

GST

1 License subscription cost

(including product

support ) upto 275 users

275

2 Implementation Cost

(including training cost)

for 275 users

Lum

psum

Cost to be mentioned only for Year 1

3 Need based on-site

support Cost as per

section 5.5

Lum

psum

TOTAL A B C

TCO

(A+B+C)

4 Incremental License

subscription cost

(including product

support )

276-

300


subscription cost

(including product

support )

301-

350


subscription cost

(including product

support )

351-

400

1. Vendor has to provide the license cost in INR. GST Rates are to be provided separately. Licenses

/ Subscription Cost shall be overall cost (of products, licenses, product support, certificates

etc.) inclusive of all Taxes (whichever is applicable), however exclusive of GST.

2. Prices mentioned at S.No 4,5 and 6 shall not be more than prices mentioned at S.No 1.

3. For S.No 4,5 and 6 ReBIT shall pay per additional license as per the unit rates mentioned based

on actual usage.

4. Renewal of licenses for Year 2 and Year 3 will be decided based on the actual requirement.

5. If vendor fails to submit the price in the above format the bid may be subject to get rejected.

6. Renewal from second year onwards will be considered based on successful implementation of

the solution without any pending issues.

7. License cost / Renewal of licnese will be paid to the successful bidder on yearly basis as per

above mentioned cost sheet and payment milestone mentioned at section 5.6 based on actual

usage of licenses.

8. Implementation cost shall be paid 30 days after Go-live and project completion certificate as

per the payment milestone mentioned at section 5.6.

9. Cost towards need based on-site support will be paid to the successful bidder on yearly basis

as per the payment milestone mentioned at section 5.6.

Note:

Total Cost of Ownership in Figures & Words (inclusive of Taxes)


ReBIT/2020 / CPO / 023

Confidential of 65

______________________________________________________________________________

The fees payable by REBIT to Bidder shall be inclusive of all costs such as insurance, taxes (GST,

as per the rates applicable), custom duties, levies, cess, transportation, installation, (collectively

referred to as “Taxes”) that may be levied, imposed, charged or incurred and REBIT shall pay the

fees due under this RFP and subsequent agreement after deducting any tax deductible at source

(“TDS”), as applicable. Any variation in Government levies/ GST/ VAT/ cess/ excise/ custom duty

etc. which has been included as part of the price will be borne by the Bidder.

Authorised Signature


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure J : Bidder’s Experience


S.No Information Sought Information

1 Client’s name

2 Assignment/Job name

3 Name and Contact Details of the Client

4 Scope of Supply/Services as a provided

under the contract

5 Current Status

6 Duration of Assignment/Job (months )

7 Approx. value of the contract (in Rupees)

8 Approx Value of the assignment/job

provided by your firm under the contract(In

Rupees)

9 Start date (month/year)

10 Completion date (month/year)

11 Copy of Purchase/ Work Order

12 Any other Supporting Document

Signature of Bidder

Date

Place


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure K : Manufacturer’s authorisation form (MAF)

(To be filled for hardware/ application software / system software/ RDBMS/ any other suites,

whatsoever applicable separately)

To

Procurement- In - Charge

Reserve Bank Information Technology Pvt Ltd (ReBIT)



Dear Sir,

We _________________________________________ who are established and reputed manufacturer /

developer of ___________________________ having organization at_________ and __________ do

hereby authorize M/s ____________________________________________ (Name and address of

Agent/Dealer) to offer their quotation, negotiate and conclude the contract with you against the

above RFP with reference number RFP: ReBIT/2020 / CPO / 012 dated 28 September 2020.

We hereby extend our full guarantee and warranty for the following software’s / products offered

by the above firm in response to ReBIT’s RFP/ tender and contract for supply, installation,

commissioning, services and support for Products & Services as specified in tender / RFP as per

the terms and conditions set out in the document for the purpose.

1. ___________________________________________________

2. ___________________________________________________

3. ___________________________________________________

4. ___________________________________________________

We duly authorise the said firm to act on our behalf in fulfilling all installations,

Technical support and maintenance obligations required by the contract.

(Please mention the names of the Software, Desktop, laptop, Servers, System Software, RDBMS,

any other suites, whatsoever applicable separately)

Yours Faithfully,

(Name)


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure L : Proposed team profile

Sr

No

Name of

Proposed

Project

Manager/

Team

leaders

/Proposed

Team

members

Professional

qualifications

Certifications /

Accreditations

ReBITing

Solutions

expertise

(Mention if

he/she has

worked in

ReBITs

earlier) In

terms of

years and

areas of

expertise

IT

Expertise

In terms of

years and

areas of

expertise

Number of

similar

assignments

involved In

Public Sector

Unit/ Public

Sector ReBITs/

Large

Government

Department

Documentary proofs are to be enclosed to substantiate the claims made.

Place:

Date:

Seal and signature of the Bidder


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure M : Bank Guarantee for EMD

To,

The CEO,



Dear Sir,

M/s __________________ having their registered office at _____________ (hereinafter called the

“Bidder‟) wish to respond to the Request for Proposal (RFP) for Setup and Implementation of RSB,

self and other associated Bidders and submit the proposal for the same as listed in the RFP

document.

Whereas the “Bidder‟ has submitted the proposal in response to RFP, we, the ____________ Bank

having our head office ________________ hereby irrevocably guarantee an amount of (Amount as per

the RFP) (Rupees ____________ in words Only) as bid security as required to be submitted by the

“Bidder‟ as a condition for participation in the said process of RFP.

The Bid security for which this guarantee is given is liable to be enforced/ invoked:

1. Withdraws its bid during bid validity period

2. Refuses to honour commercial bid. ReBIT reserves the right to place order onto Bidder based

on prices quoted by them.

3. Refuses to accept purchase order or having accepted the purchase order, fails to carry out his

obligations mentioned therein.

4. Any other reason for EMD forfeiture mentioned in the RFP

We undertake to pay immediately on demand, to ReBIT, the said amount of _____________ (Rupees

_________________ Only) without any reservation, protest, demur, or recourse. The said guarantee is

liable to be invoked/ enforced on the happening of the contingencies as mentioned above and also

in the RFP document and we shall pay the amount on any Demand made by ReBIT which shall be

conclusive and binding on us irrespective of any dispute or difference raised by the Bidder.

Notwithstanding anything contained herein:

1. Our liability under this Bank guarantee shall not exceed ____________ (Rupees _____________

Only).

2. This Bank guarantee will be valid up to ________________(as per the RFP) ; and a claim period of

one month thereafter and

3. We are liable to pay the guarantee amount or any part thereof under this Bank guarantee only

upon service of a written claim or demand by you on or before ________________.


ReBIT/2020 / CPO / 023

Confidential of 65

In witness whereof the ReBIT, through the authorized officer has sets its hand and stamp on this

_______________ day of __________________ at _________________.

Signature ……………………………………

Name …………………………………………

(In Block letters)

Designation …………………………………

(Staff Code No.) …………………………….

Official address:

(Bank’s Common Seal)

Attorney as per power of Attorney No.

Date:

WITNESS:

1……………………………………………… (Signature with Name, Designation & Address)

2……………………………………………… (Signature with Name, Designation & Address)


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure N: Performance Bank Guarantee


Chief Executive Officer,

Reserve Bank Information Technology Pvt Ltd (ReBIT),

502, Building No. 1 , Mindspace Juinagar, Nerul, Navi Mumbai - 400706

Dear Sir,

PERFORMANCE BANK GUARANTEE – (RFP Description) with reference number RFP:

ReBIT/2020 / CPO /_______ dated __________________.

WHEREAS

M/s. (name of Bidder), a company registered under the Companies Act, 1956, having its registered

and corporate office at (address of the Bidder), (hereinafter referred to as “our constituent”, which

expression, unless excluded or repugnant to the context or meaning thereof, includes its

successors and assigns), entered into an Agreement dated …….. (Hereinafter, referred to as “the

said Agreement”) with you (ReBIT) for Supply of Desktops, Laptops and other IT Peripherals under

Rate Contract as detailed in the scope given in the RFP document, as detailed in the said

Agreement.

We are aware of the fact that in terms of sub-para (…), Section (…), Chapter (…) of the said

Agreement, our constituent is required to furnish a Bank Guarantee for an amount Rs…….. (in

words and figures), as per the said Agreement, as security against breach/default of the said

Agreement by our Constituent.

In consideration of the fact that our constituent is our valued customer and the fact that he has

entered into the said Agreement with you, we, (name and address of the bank), have agreed to

issue this Performance Bank Guarantee.

Therefore, we (name and address of the bank) hereby unconditionally and irrevocably guarantee

you as under:

1 In the event of our constituent committing any breach/default of the said Agreement, which

breach/default has not been rectified within a period of thirty (30) days after receipt of written

notice from you, we hereby agree to pay you forthwith on demand such sum/s not exceeding the

sum of Rs…… (in words and figures) without any demur.

2 Notwithstanding anything to the contrary, as contained in the said Agreement, we agree that

your decision as to whether our constituent has made any such default/s / breach/es, as afore-

said and the amount or amounts to which you are entitled by reasons thereof, subject to the terms

and conditions of the said Agreement, will be binding on us and we shall not be entitled to ask

you to establish your claim or claims under this Performance Bank Guarantee, but will pay the

same forthwith on your demand without any protest or demur.

3 This Performance Bank Guarantee shall continue and hold good for thirty (30) days after the

completion of the contract period i.e. (date), subject to the terms and conditions in the said

Agreement.

4 We bind ourselves to pay the above said amount at any point of time commencing from the

date of the said Agreement until thirty (30) days after the completion of the contract period for

the Total Solution as per said Agreement.

5 We further agree that the termination of the said Agreement, for reasons solely attributable to

our constituent, virtually empowers you to demand for the payment of the above said amount

under this guarantee and we have an obligation to honor the same without demur.

6 In order to give full effect to the guarantee contained herein, we (name and address of the

bank), agree that you shall be entitled to act as if we were your principal debtors in respect of your

claims against our constituent. We hereby expressly waive all our rights of suretyship and other


ReBIT/2020 / CPO / 023

Confidential of 65

rights, if any, which are in any way inconsistent with any of the provisions of this Performance

Bank Guarantee.

7 We confirm that this Performance Bank Guarantee will cover your claim/s against our

constituent made in accordance with this Guarantee from time to time, arising out of or in relation

to the said Agreement and in respect of which your claim is lodged with us on or before the date

of expiry of this Performance Guarantee, irrespective of your entitlement to other claims, charges,

rights and reliefs, as provided in the said Agreement.

8 Any notice by way of demand or otherwise hereunder may be sent by special courier, telex,

fax, registered post or other electronic media to our address, as aforesaid and if sent by post, it

shall be deemed to have been given to us after the expiry of 48 hours when the same has been

posted.

9 If it is necessary to extend this guarantee on account of any reason whatsoever, we undertake

to extend the period of this guarantee on the request of our constituent under intimation to you

(ReBIT).

10 This Performance Bank Guarantee shall not be affected by any change in the constitution of

our constituent nor shall it be affected by any change in our constitution or by any amalgamation

or absorption thereof or therewith or reconstruction or winding up, but will ensure to the benefit

of you and be available to and be enforceable by you.

11 Notwithstanding anything contained hereinabove, our liability under this Performance

Guarantee is restricted to Rs…… (in words and figures) and shall continue to exist, subject to the

terms and conditions contained herein, unless a written claim is lodged on us on or before the

afore-said date of expiry of this guarantee.

12 We hereby confirm that we have the power/s to issue this Guarantee in your favor under the

Memorandum and Articles of Association/ Constitution of our bank and the undersigned is/are

the recipient of authority by express delegation of power/s and has/have full power/s to execute

this guarantee under the Power of Attorney issued by the bank in his/their favor.

We further agree that the exercise of any of your rights against our constituent to enforce or

forbear to enforce or any other indulgence or facility, extended to our constituent to carry out the

contractual obligations as per the said Agreement, would not release our liability under this

guarantee and that your right against us shall remain in full force and effect, notwithstanding any

arrangement that may be entered into between you and our constituent, during the entire currency

of this guarantee.

Notwithstanding anything contained herein:

• Our liability under this Performance Bank Guarantee shall not exceed Rs. …. (in words and

figure) ;

• This Performance Bank Guarantee shall be valid only up to …….. (date, i.e., thirty (30) days

after completion of the contract period) ; and

• We are liable to pay the guaranteed amount or part thereof under this Performance Bank

Guarantee only and only if we receive a written claim or demand on or before …. (date i.e. thirty

(30) days after completion of the contract period).

• This Performance Bank Guarantee must be returned to the bank upon its expiry. If the

Performance Bank Guarantee is not received by the bank within the above-mentioned period,

subject to the terms and conditions contained herein, it shall be deemed to be automatically

cancelled.


ReBIT/2020 / CPO / 023

Confidential of 65

Dated ……………………. this ……….. day …………. 2020.

Yours faithfully,

For and on behalf of the …………… Bank,

(Signature)

Designation

(Address of the Bank)

Note: This guarantee will attract stamp duty as a security bond under Article 54(b) of the Mumbai

Stamp Act, 1958. A duly certified copy of the requisite authority conferred on the official/s to

execute the guarantee on behalf of the bank should be annexed to this guarantee for verification

and retention thereof as documentary evidence in the matter.


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure O : Confidentiality and Non-Disclosure Agreement

Undertaking

(Letterhead of the Bidder)


The Chief Executive Officer

Reserve Bank Information Technology Pvt Ltd. (ReBIT),



[Date]

[Salutation]

Confidentiality Undertaking

We acknowledge that during bidding for ----------------------------------------------------, we shall have access

to and be entrusted with Confidential Information. In this letter, the phrase "Confidential

Information" shall mean any information (whether of a commercial, technical, scientific,

operational, administrative, financial, marketing, business, or intellectual property nature or

otherwise), whether oral or written, relating to REBIT and its business that is provided to us at any

time before, during or after the implementation.

In consideration of you making Confidential Information available to us, we agree to the terms set

out below:

1. We shall treat all Confidential Information as strictly private and confidential and take all

steps necessary (including but not limited to those required by this Agreement) to preserve such

confidentiality.

2. We shall use the Confidential Information solely for the preparation of our response to the

RFP and not for any other purpose.

3. We shall not disclose any Confidential Information to any other person other than as

permitted by item 5 below.

4. We shall not disclose or divulge any of the Confidential Information to any other client of

[name of product vendor / implementation partner].

5. This undertaking shall not prohibit disclosure of Confidential Information:

- To our partners/ directors and employees who need to know such Confidential Information

to assist with the bidding for RFP floated for Supply of Desktops, Laptops and other IT Peripherals

under Rate Contract, with your prior written consent;

- To the extent that such disclosure is required by law, in which case we undertake to duly

notify you;

- To the extent that such disclosure is required by any rule or requirement of any

regulatory authority with which we are bound to comply, in which case we undertake to duly notify

you; and

6. Upon your request we shall arrange delivery to you of all Confidential Information, and

copies thereof, that is in documentary or other tangible form, except:

- For the purpose of a disclosure permitted by item 5 above, subject to your prior written

consent; and

- To the extent that we reasonably require to retain sufficient documentation that is

necessary to support any advice, reports, or opinions that we may provide subject to your prior

written consent.

7. This undertaking shall not apply to Confidential Information that:

- Is in the public domain at the time it is acquired by us;

- Enters the public domain subsequent to our acquisition, otherwise than as a result of

unauthorised disclosure by us; and

- Is independently developed by us.

8. We warrant that we are acting as principal in this matter and not as agent or broker for

any person;


ReBIT/2020 / CPO / 023

Confidential of 65

Yours sincerely

Signature and Stamp of Company

[Authorised Signatory (same as signing the proposal) – Implementation Partner]

Name:

Position:

Date:

We have read this Agreement fully and confirm our agreement with its terms.


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure P – Instructions for Online Bid Submission

The bidders are required to submit soft copies of their bids electronically on the CPP Portal, using

valid Digital Signature Certificates. The instructions given below are meant to assist the bidders

in registering on the CPP Portal, prepare their bids in accordance with the requirements and

submitting their bids online on the CPP Portal.

More information useful for submitting online bids on the CPP Portal may be obtained at:

https://eprocure.gov.in/eprocure/app.

REGISTRATION

1) Bidders are required to enroll on the e-Procurement module of the Central Public Procurement

Portal (URL: https://eprocure.gov.in/eprocure/app) by clicking on the link “Online bidder

Enrollment” on the CPP Portal which is free of charge.

2) As part of the enrolment process, the bidders will be required to choose a unique username

and assign a password for their accounts.

3) Bidders are advised to register their valid email address and mobile numbers as part of the

registration process. These would be used for any communication from the CPP Portal.

4) Upon enrolment, the bidders will be required to register their valid Digital Signature Certificate

(Class III Certificates with signing key usage) issued by any Certifying Authority recognized by

CCA India (e.g. Sify / nCode / eMudhra etc.), with their profile.

5) Only one valid DSC should be registered by a bidder. Please note that the bidders are

responsible to ensure that they do not lend their DSC’s to others which may lead to misuse.

6) Bidder then logs in to the site through the secured log-in by entering their user ID / password

and the password of the DSC / e-Token.

SEARCHING FOR TENDER DOCUMENTS

1) There are various search options built in the CPP Portal, to facilitate bidders to search active

tenders by several parameters. These parameters could include Tender ID, Organization Name,

Location, Date, Value, etc. There is also an option of advanced search for tenders, wherein the

bidders may combine a number of search parameters such as Organization Name, Form of

Contract, Location, Date, Other keywords etc. to search for a tender published on the CPP Portal.

2) Once the bidders have selected the tenders they are interested in, they may download the

required documents / tender schedules. These tenders can be moved to the respective ‘My

Tenders’ folder. This would enable the CPP Portal to intimate the bidders through SMS / email in

case there is any corrigendum issued to the tender document.

3) The bidder should make a note of the unique Tender ID assigned to each tender, in case they

want to obtain any clarification / help from the Helpdesk.

PREPARATION OF BIDS

1) Bidder should take into account any corrigendum published on the tender document before

submitting their bids.

2) Please go through the tender advertisement and the tender document carefully to understand

the documents required to be submitted as part of the bid. Please note the number of covers in

which the bid documents have to be submitted, the number of documents - including the names

and content of each of the document that need to be submitted. Any deviations from these may

lead to rejection of the bid.

3) Bidder, in advance, should get ready the bid documents to be submitted as indicated in the

tender document / schedule and generally, they can be in PDF / XLS / RAR / DWF/JPG formats. Bid

documents may be scanned with 100 dpi with black and white option which helps in reducing size

of the scanned document.

4) To avoid the time and effort required in uploading the same set of standard documents which

are required to be submitted as a part of every bid, a provision of uploading such standard

documents (e.g. PAN card copy, annual reports, auditor certificates etc.) has been provided to the

bidders. Bidders can use “My Space” or ‘’Other Important Documents’’ area available to them to


ReBIT/2020 / CPO / 023

Confidential of 65

upload such documents. These documents may be directly submitted from the “My Space” area

while submitting a bid, and need not be uploaded again and again. This will lead to a reduction

in the time required for bid submission process.

Note: My Documents space is only a repository given to the Bidders to ease the uploading process.

If Bidder has uploaded his Documents in My Documents space, this does not automatically ensure

these Documents being part of Technical Bid.

SUBMISSION OF BIDS

1) Bidder should log into the site well in advance for bid submission so that they can upload the

bid in time i.e. on or before the bid submission time. Bidder will be responsible for any delay due

to other issues.

2) The bidder has to digitally sign and upload the required bid documents one by one as indicated

in the tender document.

3) Bidder has to select the payment option as “offline” to pay the tender fee / EMD as applicable

and enter details of the instrument.

4) Bidder should prepare the EMD as per the instructions specified in the tender document. The

original should be posted/couriered/given in person to the concerned official, latest by the last

date of bid submission or as specified in the tender documents. The details of the DD/any other

accepted instrument, physically sent, should tally with the details available in the scanned copy

and the data entered during bid submission time. Otherwise the uploaded bid will be rejected.

5) Bidders are requested to note that they should necessarily submit their financial bids in the

format provided and no other format is acceptable. If the price bid has been given as a standard

BoQ format with the tender document, then the same is to be downloaded and to be filled by all

the bidders. Bidders are required to download the BoQ file, open it and complete the white

coloured (unprotected) cells with their respective financial quotes and other details (such as name

of the bidder). No other cells should be changed. Once the details have been completed, the

bidder should save it and submit it online, without changing the filename. If the BoQ file is found

to be modified by the bidder, the bid will be rejected.

6) The server time (which is displayed on the bidders’ dashboard) will be considered as the

standard time for referencing the deadlines for submission of the bids by the bidders, opening of

bids etc. The bidders should follow this time during bid submission.

7) All the documents being submitted by the bidders would be encrypted using PKI encryption

techniques to ensure the secrecy of the data. The data entered cannot be viewed by unauthorized

persons until the time of bid opening. The confidentiality of the bids is maintained using the

secured Socket Layer 128 bit encryption technology. Data storage encryption of sensitive fields is

done. Any bid document that is uploaded to the server is subjected to symmetric encryption using

a system generated symmetric key. Further this key is subjected to asymmetric encryption using

buyers/bid opener’s public keys. Overall, the uploaded tender documents become readable only

after the tender opening by the authorized bid openers.

8) The uploaded tender documents become readable only after the tender opening by the

authorized bid openers.

9) Upon the successful and timely submission of bids (i.e. after Clicking “Freeze Bid Submission”

in the portal), the portal will give a successful bid submission message & a bid summary will be

displayed with the bid no. and the date & time of submission of the bid with all other relevant

details.

10) The bid summary has to be printed and kept as an acknowledgement of the submission of

the bid. This acknowledgement may be used as an entry pass for any bid opening meetings.

ASSISTANCE TO BIDDERS

1) Any queries relating to the tender document and the terms and conditions contained therein

should be addressed to the Tender Inviting Authority for a tender or the relevant contact person

indicated in the tender.

2) Any queries relating to the process of online bid submission or queries relating to CPP Portal

in general may be directed to the 24x7 CPP Portal Helpdesk.


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure Q : Work Plan Format

Detailed Work Plan (Project Plan) and Personnel Schedule

Weeks

Serial

No

Task 1 2 3 4 5 6 7 …….

The above plan should be provided for the entire duration of the implementation and should

include all the areas in the scope that is:

1. Signing of Agreement

2. Process & System Study (Receive SRS)

3. Deployment

4. Implementations

5. Training

6. Go-live

7. Post Implementation

The Bidder is expected to provide the details mentioned in the table below apart from the details

project plan.

The details provided in this table should clearly match with the detailed project plan.

Sr No Task Calendar Months *

1

2

3

4

* The calendar months specified should indicate the actual calendar months taken to complete

the task from issue of Purchase Order to the selected Bidder

NOTE:

The Bidder is expected to fill-up the above-mentioned table and not change any of the tasks

mentioned above.


ReBIT/2020 / CPO / 023

Confidential of 65

Annexure R – Product Demo and Presentation

Evaluation category Evaluation Criteria Marks

Product Demo As per scoring mentioned in Annexure H 100

Presentation (Max 20 marks as per the details mentioned below)

Implementation

Approach / Plan / Deliverables 2

Operations Support model / Deliverables 2

Operations Approach / Plan / Deliverables 2

Training Solution maturity 1

OEM

Credentials (Global / India-specific / BFSI segment) 2

Years of experience 2

SI

Assurance provided on staffing 1

Quality of proposal response 2

Proposal

Quality of proposal presentation 1

Vendor experience 1

Feedback from existing customer 1

Customer reference 2

Additional Features Additional features of relevance provided by the product 1

Total 120

Reserve Bank Information Technology Private Limited (ReBIT) - … · 2021. 1. 11. · ReBIT...

Documents

Transcript of Reserve Bank Information Technology Private Limited (ReBIT) - … · 2021. 1. 11. · ReBIT...